Disable network traffic-based alert grouping to prevent alerts from being grouped solely by network activity, reducing noise during traffic spikes and ensuring critical issues stand out for quicker resolution.

Before you begin

Role required: evt_mgmt_admin

About this task

Procedure

1. Navigate to All > Event Management > Administration > Alert Correlation Properties.
2. Clear that check box for the property Enable Network Traffic correlation (sa_analytics.agg.query_network_traffic_correlation_enabled).
3. Set the property sa_analytics.enable_process_mapping_calculation to false.