Alert Summary Management Pack


Alert Summary Management Pack

Introduction

Some time ago i’ve created a Daily Alert Summary report (https://dynamicdatacenter.wordpress.com/2012/12/04/scom-daily-alert-summary/). Based upon that post i decided to create my “Alert Summary Management Pack” for Operations Manager 2012 and i’m sharing it here.

This Management pack collects various alert counts and stores them in a performance counter targeted to the Management Server class. It also creates an informational alert that reports on the alerts that were created over time. This report lists the names of alerts that occurred most frequently. SCOM operators can use this to start tuning/resolving those alerts. Managers can use this report to have an overview of how many alerts are generated and how well the IT infrastructure/Operators are doing.

The performance counters are useful for trending. How many alerts are created daily? How many Critical Alerts are created? Is the trend going up/down? …

There is also one Task that’s created “Close Alerts Created by a rule” which does exactly what the name says. This can be useful for operators that don’t close Rules and these alerts remain in the console for ever and ever. If the alert is still active it will shortly re-appear of course.

After importing the Management Pack

Add an account that has sufficient rights to execute scom powershell commands to the “Alert Summary MP Account” profile.


Rules


Get All Alerts Created Yesterday

Runs by default ones a day and collects the number of alerts that were created yesterday.

Get Yesterday Closed Alerts

Runs by default ones a day and collects the number of alerts that were closed yesterday.

Example:


Get Current Active Alerts

Runs by default every hour and collects the number of active alerts.

Get Current Active Critical Alerts

Runs by default every hour and collects the number of active Critical alerts.

Example:


Create Alert Summary Report

This rule generates a report and writes it to the Operations Manager eventlog (event id 2013)

Alert Summary Report Rule

Picks up the 2013 event from the Operations Manager eventlog and creates an informational alert.



Tasks

Close alerts created by a rule

This task closes all active new alerts that were created by a rule.


You can download the Management Pack here:
https://skydrive.live.com/redir?resid=3BD58DFFB262BCA1!1224&authkey=!ANkYoe2cbxSNu9E

Version 1.0.2.5
Filename: AlertSummaryManagementPack.mp

NOTE: The files are provided “As Is” without any guarantee. Please implement in your test environment first and check functionality.

Enjoy,
Samuel.

This entry was posted on Sunday, January 27th, 2013 at 6:48 pm and is filed under Home, Operations. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

6 Responses to Alert Summary Management Pack

  1. David Werner says:
    May 16, 2013 at 9:56 am

    Nice Management Pack.
    A suggestion would be to be able to have trend data over several weeks or months, not just Yesterday and Today.

    dave

    Reply
    • Samuel Dubrul says:
      May 16, 2013 at 1:16 pm

      Hi Dave,
      Thanks for your comment. All data is written to the DatawareHouse so you can create a report.
      Samuel.

      Reply
  2. abdali says:
    May 31, 2013 at 7:00 am

    hi,
    I am using SCOM 2012 SP1 with ACS.
    required the following reports.
    1. Health status of All agents deployed.
    2. All Windows operating system health report.

    thanks and regards,

    Faisal

    Reply
  3. Salvador Carbajal says:
    June 25, 2013 at 7:44 pm

    Dear Master, can you provide me with the MP, the download link is broken 😦

    Reply
  4. Salvador Carbajal says:
    June 27, 2013 at 1:25 am

    Tks master i guess that was my ISP. Do you know something about alerts with sound?

    Reply

Leave a reply to Samuel Dubrul Cancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.