Forum Discussion

Neophyte

14 days ago

Ideas for devices generating a lot of alerts

I'm looking to be more proactive about the alerts occurring in my portal. I was hoping to create some logic where if a device generates a certain number of warnings over the course of seven days, gen...

Cole_McDonald

Professor

13 days ago

If written as a datasource, counts of events per timeframe can also self clear and you end up with an historical graph of "normal" to boot. That can help identify cadences to the issues if there are any. Spike at 3am every morning, etc. I use a few X events / 5 minute 'Sources I've made to track quantity aberrations in logs. Specifically, Security:4625 with all it's glorious substatuses. That can show graphically when a service account has failed... and when and where brute force attacks are happening in a Windows environment.

DanN
Neophyte
13 days ago
Is there a datasource example in LM that you would recommend using to replicate your idea?

Forum Discussion

Ideas for devices generating a lot of alerts

Related Content

New Widget display Dead Devices

SNMP Traps - Baseline for alerting

Network Device latency Report

LogicMonitor Device Provisioning Workflow Diagram?

REST API Device SLA Widget

Recent Discussions

Mismatch in Account Information data in uiv3 and uiv4 pages

Non-Administrator Users Unable To Manage Resource Threshold

ISP network monitoring

Does anyone monitor their iDracs with LM? Tons of duplicate alerts

CIM vs. WMI as native 'Source type