Health Log Analytics Overview dashboard

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 3 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Health Log Analytics Overview dashboard

    The Health Log Analytics Overview dashboard utilizes Performance Analytics to track historical data trends and generate regular reports. It provides insights into automated actions triggered by IT alerts, incident reduction rates, and the prevention of escalations due to Health Log Analytics. Note that this feature is set for future deprecation, and users should transition to the HLA Operational dashboard for continued support.

    Show full answer Show less

    Key Features

    • User Roles: The dashboard requires the roles of evtmgmtadmin for editing and permission management, and evtmgmtoperator for viewing details on alerts and anomalies.
    • Indicators: Various performance indicators are available, including:
      • Average time to close alerts
      • Active streaming endpoints
      • Predicted issues based on alerts
      • Alerts closed without ITSM tickets
      • Cost savings from preventing outages
      • Significant alerts
      • Alerts with knowledge base articles
      • Alerts leading to ITSM tickets
      • Alerts compression ratio
    • Breakdowns: Allows grouping or filtering of scores for detailed analysis, such as by assignment group.
    • Data Visualizations: Reports available include critical alerts score, active alerts score, and impacted application services.

    Key Outcomes

    By using the Health Log Analytics Overview dashboard, organizations can effectively visualize and track HLA alerts, monitor incident resolution times, and quantify financial savings from proactive incident management. This enables better decision-making and enhances operational efficiency within IT operations management.

    The Health Log Analytics Overview dashboard uses Performance Analytics to provide a trend of historical data as well as regular reports. The dashboard helps you understand the number of automated actions triggered by alerts from IT issues, the incident reduction rate, and the amount of escalation Health Log Analytics prevented.

    Important:
    This feature is being prepared for future deprecation. It will be hidden and no longer available for installation but will continue to be supported. For details, see the Deprecation Process [KB0867184] article in the Now Support knowledge base.

    Instead of the Health Log Analytics Overview dashboard, you can use the HLA Operational dashboard. For more information, see HLA Operational dashboard.

    Health Log Analytics Overview dashboard.

    Health Log Analytics Overview dashboard - Business Value Realization tab.

    Required ServiceNow AI Platform roles

    • evt_mgmt_admin
    • evt_mgmt_operator

    Use cases

    These use cases provide examples of how different people in your organization would use this dashboard.
    User Dashboard use
    evt_mgmt_admin or admin Edits the dashboard and grants view and share permissions.
    evt_mgmt_operator or admin Views the dashboard and details of the records contained in it to visualize and track HLA alerts, anomalies, time required to resolve IT incidents, funds saved, and other relevant information.

    Indicators

    Indicators define a performance measurement taken at regular intervals of a business service, an activity, or organizational behavior. These performance measurements result in a series of indicator scores over time. Businesses track these scores to measure current conditions and to forecast trends.

    Indicators available in the Health Log Analytics Overview dashboard are:

    Average time between HLA alert occurrence time and alert closed time
    • The median time between Health Log Analytics alert occurrence time and alert closed time, measured daily in hours.

      This data is presented in the MTTR (Mean Time To Repair) Weekly AVG widget.

    • The average number of hours between alert occurrence time and alert closed time of a Health Log Analytics alert.

      This data is presented in the MTTR (Mean Time To Repair) widget.

    Active streaming endpoints
    The number of endpoints (IPs, networks, and devices) that are streaming into Health Log Analytics.

    This data is presented in the Endpoints Streamed widget.

    HLA alerts with ITSM ticket
    The predicted number of issues based on the number of alerts that led to ITSM tickets.

    This data is presented in the Escalations Prevented widget.

    Closed alerts without ITSM ticket
    The weekly number of alerts closed without an ITSM ticket.

    This data is presented in the Incident Reduction widget.

    $ saved
    The amount of money, in US dollars, saved by using Health Log Analytics. The model is based on the number of Health Log Analytics alerts marked as significant, with P1 incidents.

    This data is presented in the US$ Savings from Predicting and Preventing Critical Outages widget.

    HLA alerts that marked as significant
    The number of Health Log Analytics alerts marked as significant.

    This data is presented in the Issues Predicted widget.

    Alerts with KB
    The number of Health Log Analytics alerts with an associated knowledge base article.

    This data is presented in the Automation-Ready Alerts widget.

    HLA alerts turned ITSM ticket
    The number of Health Log Analytics alerts with actual iHub invocations.

    This data is presented in the Automations Triggered widget.

    Alerts compression ratio
    The number of anomalies that led to Health Log Analytics alerts.

    This data is presented in the Noise Reduction widget.

    Active streaming endpoints
    The number of endpoints (IPs, networks, and devices) that are streaming into Health Log Analytics, by Application Service.

    This data is presented in the Endpoints Streamed widget.

    Detections.accepted and Alerts.Open
    Indicators used to calculate the Alerts compression ratio.

    Breakdowns

    Breakdowns enable you to group or filter indicator scores for more detailed analysis, such as to show separate scores for each assignment group.

    Breakdowns available in the Health Log Analytics Overview dashboard are:

    Streaming Sources Data Input.

    Data visualizations

    Reports available from the Health Log Analytics Overview dashboard are listed in the following table.

    Title Type Source table Description
    Critical Alerts Score Score graph. Report Source: Active Alerts

    Additional condition:

    Source = Log Analytics, Severity = Critical,Maintenance = false, AND State = not Closed

    		 The number of critical alerts in your organization from the source Log Analytics.
    Active Alerts Score Score graph. Report Source: Active Alerts

    Additional condition:

    Source = Log Analytics, Maintenance = false, AND State = not Closed

    		 The number of open alerts in your organization from the source Log Analytics.
    Application Services Affected by HLA Alerts Bar Bar chart. [em_alert_bs_status_view] The number of alerts per severity level. The alerts are grouped by business service in your Configuration Management Database (CMDB).
    Top 10 Impacted Application Services with Urgent and High Priority Bar Bar chart. Report Data Source: Active Alerts (Maintenance = false AND State = not Closed)

    Additional condition:

    Source = Log Analytics AND Priority group in (Urgent, High)

    		 The services in your CMDB that were impacted the most by urgent and high priority alerts.