Define alert clustering conditions to trigger one or more alert clustering tags, which help create alert groups from fewer alerts. Creating alert groups from fewer alerts reduces noise, making it easier to identify critical incidents, prioritize responses, and manage issues effectively.

Vorbereitungen

Role required: evt_mgmt_admin

Warum und wann dieser Vorgang ausgeführt wird

To create a tag def users need to use filter to define on which alerts the definition will apply and define a grouping criteria by specifying which field values should be compared to create a group.

Prozedur

1. Navigate to All > Event Management > Tag Based Alert Clustering Engine > Alert Clustering Definitions.
2. Select New.
3. Configure the fields on the Event Management tag based alert grouping definition form.
4. Select Save.

Ergebnisse

The definition appears in the Tag Based Alert Clustering Definitions table and Service Operations Workspace (ITOM) > Grouping automation. Alert groups created by this definition are categorized as Tag Cluster groups.