Event and Alert dashboard

  • Release version: Washingtondc
  • Updated August 1, 2024
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Event and Alert Dashboard

    The Event and Alert dashboard utilizes Performance Analytics to deliver real-time insights into events and alerts within Event Management. It focuses on key metrics such as noise reduction, alert grouping coverage, and identifies the top alert sources, enhancing visibility into trends and impacted configuration items (CIs).

    Show full answer Show less

    Key Features

    • Real-time Metrics: Displays metrics related to noise reduction, alert grouping, and more.
    • Historical Data Collection: Run the [PA EM] Historic Data Collection job to enable partial historical data collection for better analysis.
    • User Access: Different roles (evtmgmtadmin, evtmgmtoperator) have specific permissions for viewing and editing the dashboard.
    • Breakdowns: Provides various visualizations such as line graphs for trends and bar charts for alert sources, enhancing understanding of alert dynamics.

    Key Outcomes

    The dashboard helps users visualize and track events and alerts, identify trends and outcomes, and prioritize incident response on the most impacted Configuration Items. By focusing on the CIs with the most alerts, organizations can improve their incident management and maintain system performance effectively.

    The Event and Alert dashboard uses Performance Analytics to provide real-time visibility into events and alerts in Event Management, showcasing key trends, outcomes, and the most impacted configuration items. It highlights metrics such as noise reduction, alert grouping coverage, and top alert sources.

    Events and Alerts dashboard.

    Run the [PA EM] Historic Data Collection job once to enable the partial collection of historical Event Management data:
    1. Navigate to All > Performance Analytics > Data Collector > Jobs.
    2. Select [PA EM] Historic Data Collection.
    3. Select Execute Now.

    Prerequisites

    Ensure that the Event Management application is installed.

    Required ServiceNow AI Platform roles

    • evt_mgmt_admin
    • evt_mgmt_operator

    Access the Events and alerts dashboard

    To open the dashboard, use one of the following methods:
    • Navigate to All > AIOps Dashboards > AIOps Operational > Events and Alerts.
    • Navigate to Workspaces > Service Operations Workspace and select the AIOps Dashboards icon (AIOps Dashboards icon.).

      By default, the Events and Alerts tab is selected.

    Use cases

    For examples of how different people in your organization would use this dashboard, see these use cases.
    User Dashboard use
    evt_mgmt_admin or admin Edit the dashboard and grant view and share permissions.
    evt_mgmt_operator or admin View the dashboard and details of the records contained in it to visualize and track events, alerts, trends, outcomes, and the most impacted Configuration Items in your organization.

    Breakdowns

    Breakdowns available in the Event and Alert dashboard are:

    • Trends
    • Outcomes

    Reports

    Title Type Description
    Noise reduction (events to alerts compression) Line graph The compression rate from events to alert creation. The higher the number, the fewer alerts are being created.
    Alerts grouping coverage Line graph The percentage of alerts aggregated into grouped alerts over time.
    Incident compression rate

    Line graph

    The percentage of alerts that did not result in incident creation. A higher percentage means more alerts were resolved without generating incidents.
    Top 20 alert sources (last 7 days) Bar chart The number of alerts per source categorized by severity over the last 7 days.
    Top 20 event sources (last 5 days) Bar chart The number of events per source categorized by severity over the last 5 days.
    Alerts without CI (created on last 7 days) Line graph The number of alerts without CI binding created over the last 7 days.
    Alerts grouping (last 7 days) Bar chart The distribution of grouped alerts over the last 7 days.

    Most impacted Configuration Items

    The Most Impacted Configuration Items section of the Event and Alert dashboard provides a comprehensive overview of the configuration items (CIs) that are most impacted by the issue. This section lists key details such as the name of each CI, the number of associated alerts, their classification (such as application service), and location. Additionally, it identifies the owner and support group responsible for each CI, facilitating targeted and efficient incident resolution. By highlighting the most impacted CIs, this section helps prioritize critical assets and resources, ensuring that the most significant issues are addressed promptly to maintain system stability and performance.