Event Management - Flood control of Events from a event source.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎05-05-2025 08:01 PM
Sometimes there is flood of events from a event source which is leading to creation of 10K+ alerts and due to alert correlation rules all the alerts are getting grouped and only one incident record is getting created.
What configuration can be done in event management such that after certain number of alerts are created under alert correlation rule, further creation of alerts should be stopped for a certain period of time?
Also if there is a situation like 10k+ alerts got correlated under a single incident, will there be any impact on system performance.
- Labels:
-
Event Management
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎05-06-2025 02:15 PM
Hello Jeffreys !!
can we ally API rate limit to push connectors as well ?
Please share if you have any documentation or KB related to same.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎05-13-2025 08:42 AM
Yes you can configure it on push connector, the generic event API, or any other SN APII
here is the documentation : https://www.servicenow.com/docs/bundle/yokohama-api-reference/page/integrate/inbound-rest/concept/in...
