Skip to content

Latest commit

 

History

History
76 lines (54 loc) · 3.34 KB

sumologic.md

File metadata and controls

76 lines (54 loc) · 3.34 KB
description
Create ilert alerts from Sumo Logic monitoring and get alerted through ilert for high-priority issues.

Sumo Logic Integration

In ilert: Create a Sumo Logic alert source

  1. Go to Alert sources --> Alert sources and click on Create new alert source

  2. Search for Sumo Logic in the search field, click on the Sumo Logic tile and click on Next.

  3. Give your alert source a name, optionally assign teams and click Next.

  4. Select an escalation policy by creating a new one or assigning an existing one.

  5. Select you Alert grouping preference and click Continue setup. You may click Do not group alerts for now and change it later.

  6. The next page show additional settings such as customer alert templates or notification prioritiy. Click on Finish setup for now.

  7. On the final page, an API key and / or webhook URL will be generated that you will need later in this guide.

In Sumo Logic: Create a notification setting

  1. Go to Sumo Logic, then to Manage Data -> Monitoring, click on the Connections tab and then on the Add (+) button

  1. On the next page, click on the Webhook tile

  1. On the next page, name the connection e.g. ilert, paste the Webhook URL that you generated in ilert, in the Payload section following payload object, then click on the Save button

{
  "Name": "{{Name}}",
  "Description": "{{Description}}",
  "MonitorType": "{{MonitorType}}",
  "Query": "{{Query}}",
  "QueryURL": "{{QueryURL}}",
  "ResultsJson": "{{ResultsJson}}",
  "NumQueryResults": "{{NumQueryResults}}",
  "Id": "{{Id}}",
  "DetectionMethod": "{{DetectionMethod}}",
  "TriggerType": "{{TriggerType}}",
  "TriggerTimeRange": "{{TriggerTimeRange}}",
  "TriggerTime": "{{TriggerTime}}",
  "TriggerCondition": "{{TriggerCondition}}",
  "TriggerValue": "{{TriggerValue}}",
  "TriggerTimeStart": "{{TriggerTimeStart}}",
  "TriggerTimeEnd": "{{TriggerTimeEnd}}",
  "SourceURL": "{{SourceURL}}",
  "SearchName": "{{SearchName}}"
}
  1. Finished! Your Sumo Logic alerts will now create alerts in ilert.

FAQ

Will alerts in ilert be resolved automatically?

No, unfortunately, Sumo Logic's notification is not compatible with ilert's resolve event.

Can I connect Sumo Logic with multiple alert sources from ilert?

Yes, simply add more connections in Sumo Logic.