×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')

   

This documentation supports an earlier version of BMC Helix Operations Management.

To view the documentation for the latest version, select 23.1 from the Product version picker.
BMC Helix Operations Management 22.2 ... Monitoring events and reducing event noise Event classification and formatting

Anomaly event class

The Anomaly (or ANOMALY) event class and slots are for all anomaly events.

Hidden slots

The hidden slots are internal slots that must not be changed.

To understand the list of slots that are used to determine duplicate events, see .Slot facets vSep_2021-21.3.

ANOMALY base class slots

Slot nameSlot display nameTypeDescriptionHidden?
an_additional_values
Additional Values

List of string

Additional values.No
an_algorithm_name
Algorithm Name

String

Anomaly algorithm.

Random Cut Forest.

No
an_analysis_type
Variate Type

String

Type of variate policy.

Multivariate.

No
an_anomaly_id
Anomaly Id

String

Unique Anomaly ID.

System generated hexadecimal value. For example, ec20943f-0364-4622-9abc-6869fea51ead

No
an_attribution_metrics
Attribution Metric IdsList of string

Identifier for each metric in the variate policy.

Combination of metric name, entity ID, Object ID, Object Class, and host details. System generated. For example, __name__=vmUsed,entityId=a4c0e83f-ac6f-497b-86cd-c646b90d7f89:NUK_Memory:
NUK_Memory,hostname=ai-ml-host94.abc.com

For a multivariate, it is a comma separated list. The scores are listed based on highest contributing metric on top to the lowest contributing metric at the bottom.

No
an_attribution_score

Attribution Score

List of string

Contribution of one or multiple metrics to the overall anomaly score calculation.

For a multivariate, it is a comma separated list. The scores are listed based on highest contributing metric on top to the lowest contributing metric at the bottom.

No
an_end_time
Anomaly End Time

Long (Epoch)

Anomaly status change time. It is an epoch time. For example, 4294967295000 (2020/09/22 10:40:52 A.M.)Yes
an_highest_severity
Highest SeverityEnum

Ordinal point of highest severity for a given metric.

For example, 70 (could be equal to CRITICAL severity when translated).

Yes
an_kpi_group_id
Variate Policy Id

String

Unique policy identifier. It is a hexadecimal value.

For example, 1a18513b-b2c6-41ab-a437-77265f740acd

No
an_kpi_group_name
Variate Policy NameStringUser-defined name of the variate policy.No
an_mean
MeanString

Mean distribution score of the contributing metrics. It is a decimal value.

For example, 0.9555227578206286.

No
an_minmax_score
Min-Max Score

String

Min-Max normalization score. It is a decimal value.

For example, 12.023813718063897.

No
an_old_severity
Old Severity

Enum

Ordinal point of the previous severity before the latest severity change.

Yes
an_parameter_name
Metric Name

String

Name of the selected metric.

Yes
an_parameter_threshold
Variate ThresholdString

Variate threshold value. It is a decimal value.

For example, 3.638181541480837.

No
an_parameter_value
Metric Value

String

Metric value.

No
an_pts_exceeded
Data Points ExceededInteger

Number of data points that exceeded the deviation range within the sample.

No
an_pts_total
Total Data PointsInteger

Total number of such data points in the system.

No
an_score
Anomaly ScoreString

Anomaly score value. Sum of all contribution from all attribution scores. See Attribution Score above.

It is a decimal value. For example, 4.331904.

No
an_sensitivity
SensitivityString

Sensitivity value.

This is same as the Variability Range in Anomaly Score Settings for a particular severity configured in the variate policy. By default, it is 1.0 for Minor, 2.0 for Major, and 3.5 for Critical.

No
an_standard_deviation
Standard DeviationStringStandard deviation calculation.No
an_sustain_duration
Anomaly DurationInteger

Persistence or waiting time in minutes before an anomaly event is generated. Event is generated only if the anomaly persists for this duration.

This is same as the Anomaly Duration in Anomaly Event Settings configured in the variate policy. For example, 0, 5, 10, or 15.

No
objectObjectString

Subcomponent of the host with which the event is related.


For example, it could be the name of the disk on which the event is reporting the problem.

No
object_classObject ClassStringObject class identifier. If the object class cannot be derived from the original event, it must be filled in during the event enrichment.No
object_idObject IDStringIt is a combination of Agent UID, Monitor type, and Instance name.No

Was this page helpful? Yes No Submitting... Thank you
Last modified by Shweta Hardikar on Apr 01, 2022
reference class event_class event slot anomaly_event univariate univariant multivariate multivariant kpi_group variate_policy variate_policies event_slot

Comments

Log in or register to comment.

Alarm event class
Event base event class
© Copyright 2020-2022 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.