What is the duration of Automate Grouping of alert correlation in event mgmt

Komal10
Tera Contributor

‎04-21-2023 02:06 AM

I want to know about automated grouping.
If CI based automated groups ae created how long is the duration after what time does new automated group alert will be created for the same CI
does it take time factor or state of alert is alone deciding factor?

@aleck_lin  @ben_yukich @SNExploreGuru @vNick @Ashutosh Munot1 @Dhruv Gupta1 

 

0 Helpfuls
  • 383 Views
1 REPLY 1

Sayali_Suryawan
Tera Guru

‎11-25-2024 11:45 PM

Hello Komal10

The grouping relies on assignment groups. For example, cmdb_ci.support_group,IntegrationGroup, and this is done due to the system property "evt_mgmt.alert_auto_assignment_field"

Please refer "Introducing Alert Assignment Groups in the Washington Release"

https://www.servicenow.com/community/itom-blog/introducing-alert-assignment-groups-in-the-washington...

And 

 

"Assigning alert assignment group precedence"

 

https://www.servicenow.com/docs/bundle/xanadu-it-operations-management/page/product/event-management...

 
For timing, there are two properties: 
 
sa_analytics.agg.query_dynamic_window
which is set by default to 10 minutes, defines the maximum time difference between creation time of 2 alerts that can be added to a group.
 
sa_analytics.agg.query_max_group_lifetime
with a default value of 30 minutes, is the maximum period of time from group creation that we can add alerts to it.
 
Refer to KB article KB1346251. 

Please mark my answer if it was helpful.

Thank you


0 Helpfuls