alerts weekly report

Hi Team,

I want to create a alert report on weekly basis based upon severity.Could you please guide me that how to  create report.

client want to see that how many critical, warning and informational alert are triggered on weekly basis, Could you please guide me that how to  create report.

Thanks

aswani

Parents
  • Orion provides an OOTB report "Triggered Alerts - Last 30 Days" which can be copied and edited to change the time period of interest. Would this meet your needs? If not the following SQL query may be more suitable for how you want to see this data

    SELECT Count(Severity) As 'Number of Alerts', Severity  FROM AlertHistoryView
    WHERE EventTypeWord='Triggered'
    AND TimeStamp >= GETDATE()-7
    GROUP BY Severity 
    

    For a step by step guide on how to use this query visit https://support.solarwinds.com/SuccessCenter/s/article/How-to-Create-a-Custom-SQL-Report-in-the-Orion-Web-Console?language=en_US

  • Hi Johnson,

    Thanks a lot. I have verified given query but it is giving only count but we are looking alert details for entire week on severity basis. Could you please guide me that how i can get the report.

    Thanks

    Aswani

  • Hey Aswani,

      I think below query helpful to you. 

    select aa.[timestamp] as TriggeredDateTime , aa.message,ac.severity,

    (CASE aa.eventtype

    WHEN 0 then 'Triggered'

    WHEN 1 THEN 'Reset'

    WHEN 2 THEN 'Acknowledged'

    WHEN 3 THEN 'Note Added'

    WHEN 4 THEN 'Added to Incident'

    WHEN 5 THEN 'Action Failed'

    WHEN 6 THEN 'Action Succeeded'

    WHEN 7 THEN 'Unacknowledge'

    WHEN 8 THEN 'Cleared'

    END) AS EventType

    ,ac.name,ao.entityCaption as Name_of_alert from Alerthistory aa

    join AlertObjects ao on ao.AlertObjectID = aa.AlertObjectID

    join AlertConfigurations ac on ao.AlertID = ac.AlertID

    where aa.[timestamp] between ${fromtime} and ${totime}

    and aa.eventtype=0

    order by  aa.[timestamp] Desc

    These are severity numbers

    Severity:

    0 - informational

    1 - warning

    2 - critical

    3 - Serious

    4 - Notice

  • Above given query almost met my requirement but device name is not showing in the report, Could you please add the device name also in the report and then share me the updated query.

Reply Children
No Data