Creating Custom Monitors

You can create a new monitor for the host and services and define a trigger.

To create monitors:

  1. Log in to NetWitness Platform.

  2. Go to netwitness_adminicon_25x22.png (Admin) > Health & Wellness.
  3. Click New Health & Wellness.
  4. Click Pivot to Dashboard.
  1. Go to netwitness_newhwhom_23x27.png > Open Distro for Elasticsearch > Alerting.
  2. In the Monitors tab, click Create monitors.
  3. In the Create Monitors section, specify the required details.

  4. Click Create.

    After a monitor is created, you can add a trigger to this monitor.

  5. In the Create Trigger view, provide the required details:

    1. Trigger name - Specify the name of the trigger.
    2. Severity level - Set the severity level from range 1–5. 1 is the highest severity and 5 is the lowest severity.
    3. Trigger condition - Set the trigger condition with the value. The options are IS ABOVE, IS BELOW, IS EQUAL. For example, IS ABOVE 200.

  6. Click Create to save the trigger.

    Note: After the specified duration, defined as FOR THE LAST in the Define monitor view, the alert state will change if the trigger condition is met. For more information, refer https://nw-corp.atlassian.net/browse/ASOCKB-65.

For more information on creating monitors, see "Alerting" in the Open Distro for Elasticsearch 1.12.0 guide.