Platform alert pack: Collector
Purpose
The collectors are tools that allow users to integrate different platforms and systems with the Devo application and stream their data flows easily. Monitoring their activity is crucial for maintaining a healthy collector environment, and this alert pack helps with this task. It provides detections to warn you when something’s out of the ordinary, allowing you to determine if action must be taken.
This alert pack complements the Devo Collector Monitoring Activeboard, so we highly recommend using them in combination.
Included alerts
SecOpsCollectorCredentials: detects any credential problem (401 or 403 error) in any collector running in the domain, and also warnings that could mean error as well.
|
Prerequisites
To use this alert pack, you must have the following data sources available in your domain:
Data srouces
devo.collectors.out
Â
Open alert pack
Once you have installed the desired alerts individually, you can use the Open button at the top right of the card in Exchange to access the Alert configuration, where you can apply filters to find them and later manage them as required. You can also access this area via the Navigation pane (Administration → Alert Configuration → Available alerts).
Use alert pack
The alerts installed are deactivated by default. Access the Alert configuration area to activate those you need and assign sending policies to receive them through the desired channels.