Alert grouping creating a duplicate incidents
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-23-2023 05:09 AM
We have custom alert correlation which will group alerts when alert has same node.
Here I have come up with one scenario, I have alert received from one of the node and for same alert it's created incident ,after 10 min again we have received another alert from same node since both are the same nodes it created group alert and incident ,while it creating group alert oldest alert as considered as a primary alert in a group because of its highest severity and oldest one.
Can some one advices me is there a way to avoid creating incident in group alert when if secondary alert has already have incident task since both are the same nodes.
Thanks in advance !
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-23-2023 09:25 AM
Hello @Arjun Arjun ,
Please refer to the below link:
https://www.servicenow.com/community/itom-forum/duplicate-incidents-are-created-in-automated-alert-c...
If it is helpful, mark it as a thumps-up and accept the correct solution.
Thanks & Regards,
Abbas
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-24-2023 08:54 PM
Hi Abbas, thanks for your response.
It could be wonder if we have any solution like suppose secondary alert has incident then not create incident for group alert, or if alert has incident then it should not consider in a group.
Thanks