Customer Level 2 Training: Service Groups, Alerts and Dependencies


Published on

Hands down one of the most valuable features of SolarWinds Products is the Advanced Alert Manager. All of the SolarWinds Orion products ship with built-in alerts, ready to use as soon an you install. From there the Advanced Alert Manager offers a broad range of options to configure alerts for your environment. This level 2 training we will focus on:

• Alert trigger logic and condition nesting
• Alert trigger types
• Custom Properties and alerts
• Explicit and embedded suppression
• Alert actions and variables
• Using service groups and dependencies
• Testing and troubleshooting

Published in: Technology, Business
1 Like
  • Be the first to comment

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

Customer Level 2 Training: Service Groups, Alerts and Dependencies

  1. 1. SolarWinds® Level 2 Training Advanced Alert Manager August 23, 2012COPYRIGHT © 2012, SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED. 1
  2. 2. Advanced Alert Manager» Hosts  Jason Ferree –Support Supervisor  Mark Wiggans – Information Development Are you Certified? 2
  3. 3. Agenda Introductions & Housekeeping A Look Under the Hood Condition Groups Suppression Service Groups Alert Actions and Variables Troubleshooting Q&A © iStockphoto 3
  4. 4. Introductions and Housekeeping» Today’s Content will Focus on Orion® Advanced Alert Manager and Dependencies  We only have an hour» Ask questions!  Don’t be afraid to ask deeper questions  Don’t wait until the end – ask away» Today’s session is being recorded  Recorded session on  Slides available on 4
  5. 5. Advanced Alert Manager» How Alerts Work – A Look Under the Hood. 5
  6. 6. Advanced Alert Manager» Launching the Alert Manager Interface - Quick Tour 6
  7. 7. Advanced Alert Manager» Understanding Condition Groups  All = logical AND  Any = logical OR  Not all and None - Use very carefully» Embedded condition groups  Follow the left alignment for embedded conditions 7
  8. 8. Advanced Alert Manager» Suppression - Example 1, Direct Suppression  Alert condition: Node down  Suppression condition: node name = Lab router  Desired Result – Alert on all devices down except Lab router  Actual Result - if a node exists in SQL database with the name “Lab router”, then all node down alerts will be suppressed. If a suppression condition is true, alerts will be suppressed regardless of the trigger condition. 8
  9. 9. Advanced Alert Manager» Suppression - Example 2, Embedded Suppression  Alert condition: Simple Condition Group • Trigger alert when all if the following apply • Node status is equal to down • Node name is not equal to Lab router  Suppression condition: None  Desired Result – Alert on all devices down except Lab router  Actual Result - Alert on all devices down except Lab router To embed a suppression condition, flip the logic and add the condition to the trigger. 9
  10. 10. Advanced Alert Manager» Suppression - Example 3, “Suppression” using Groups and Dependencies 10
  11. 11. Advanced Alert Manager» Example 3 Explained – “Suppression” Using Groups and Dependencies  Create a service group and add site 1 remote devices  Create a service group for the data center routers  Create a dependency - site 1 group dependent on data center group  Set datacenter status rollup to mixed  Create an alert for data center group • Trigger - Group status is equal to down • Default reset – Condition no longer exists • No suppression 11
  12. 12. Advanced Alert Manager» Example 3 in Action  Alert for data center group when both routers are down • Site 1 devices status set to unreachable  Existing node down alert fires for parent device down Alert! Status set to unreachable 12
  13. 13. Advanced Alert Manager» Alert Actions  Send an email • Trouble ticket integration point!  Send a message via syslog or trap  Execute a program or script  Send Windows® Net message  Tons more» Variables  What triggered the alert, when, what was affected, status…. 13
  14. 14. Advanced Alert Manager» Troubleshooting Alerts Issue will most likely be in one of three areas 1 - Alert or Suppression Condition Errors in condition logic Logical contradictions Other conditions not logically possible Suppression killing all triggers 2 - Alert Action Error in external program or script Email issues 3 - Alert is OK but test is invalid Check test logic, timing, and alert criteria 14
  15. 15. Advanced Alert Manager» Other Alert Types  Basic Alerts • Most all functionality exists in Advanced Alerts  Syslog Alerts • Defined in Syslog Alerts/Rules UI  Trap Alerts • Defined in Trap Alerts/Rules UI • Allows for filtering, parsing, thresholds and alert actions 15
  16. 16. Summary and Q&A » Thank you for attending! » Additional Resources  Understanding Orion Advanced Alert Manager •  Using Orion Groups and Dependencies •  Thwack® Alert Lab • © 2012, SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED. 16