Disable network traffic-based alert grouping to prevent alerts from being grouped solely by network activity, reducing noise during traffic spikes and ensuring critical issues stand out for quicker resolution.

Antes de Iniciar

Role required: evt_mgmt_admin

Por Que e Quando Desempenhar Esta Tarefa

Procedimento

1. Navigate to All > Event Management > Administration > Alert Correlation Properties.
2. Clear that check box for the property Enable Network Traffic correlation (sa_analytics.agg.query_network_traffic_correlation_enabled).
3. Set the property sa_analytics.enable_process_mapping_calculation to false.