Alert Trends Functionality

The Alerts page shows the Alert Trends histogram organized over time by the number and severity of alerts found on a daily basis. This can help you better track abnormal spikes of alerts and review the behaviors that caused the events.

In the Alert Trends histogram, you can select a desired time frame to view the behaviors that caused the alerts. Click and drag your cursor to select a date range on the histogram. The information in Group View or List View and Alert Filters changes to display content relevant to the behaviors during the time frame you specified.

You can use the Alert Trends histogram and the Alert Filters to help you quickly manage (review, acknowledge, dismiss, or suppress) alerts.

To review and dismiss an alert:

1. Log into Distributed Cloud AIP.
2. In the left navigation pane, click Alerts. The Alerts page displays.
3. On the Alert Trends histogram, click and drag your cursor to select a date range. All alerts generated during that timeframe display.
   
4. Review the Alert Filters section to determine the rule filter(s) that caught the alert behavior.
   
5. Select a specific alert to review details to help you determine what event triggered the alert. From the Alert Details sections in both Group View and List View, you can:
   
   • Acknowledge and dismiss the behavior (see Life Cycle of an Alert)
   • Suppress the behavior (see How do I Suppress an Alert?)

   Important

   Requests to dismiss alerts are queued and do not occur in real time. Hence, refreshing the Alerts page immediately after dismissing an alert can cause the page to incorrectly display the alert count.

6. Repeat this process as necessary. Distributed Cloud AIP recommends reviewing other alert behavior spikes and using the dismiss or suppress functionality as needed.