capability to auto assign P1 priority to a proactive incident when 50% or more devices (Router) at a site location go down.
- First router down at a site
→ Create P2 incident (standard BAU behavior). - While Router1 is already down (incident open), Router2 at the same site goes down
→ Check all routers for the site.
→ If more than 50% of routers at that site have active alerts, then:- Create a new P1 incident immediately (0 sec wait).
- Generic rule
→ If >50% of site routers have active “Router Down” alerts at any time
→ Raise P1 with 0 sec wait.
could anyone please help to develop this in the event management
Thanks in advance.
