×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')

   

This documentation supports an earlier version of BMC Helix Operations Management.

To view the documentation for the latest version, select 23.1 from the Product version picker.
BMC Helix Operations Management 22.2 ... Monitoring events and reducing event noise Defining event policies for enrichment, correlation, notification, and suppression

Information sharing between enrichment policies with global variables

Global variables are structured records that maintain data values across all phases of event processing. You can use these variables in event enrichment policies for sharing information between events during event processing; any other type of variable (local) has a scope limited to the current policy.

Scenario

Sarah is an administrator at Apex Global. Her company receives third-party events from Nagios and want to use the entity details in the event to enrich multiple events through enrichment policies. To achieve this goal, she can create a global variable to store the entity details and use it between event enrichment policies for enriching events.

Related topic

Actions for advanced and time-based enrichment

Example: Enrich events based on the event hostname and message

Usage of global variables

You can use global variables in the following scenarios to:

  • Filter event slots by using event operators with global variables. For more information about event operators, see Slot data types.
  • Build conditions for processing events.
  • Point to static text, event data (values of event slots), results of mathematical functions, and values of previously-defined variables in enrichment policies.
  • Specify global variables in the external source file for the match and enrichment values for enriching events by using dynamic enrichment policies. For more information, see Specifying global variables in an external file.
  • Filter events by using the event selection criteria. For more information, see Creating and enabling event policies.
  • Specify notification settings while creating a notification policy. For more information, see Event-based notifications for alerting users.
  • Set global variable attribute values in event enrichment policies. For more information, see Actions for advanced and time-based enrichment.
  • Specify global variables in Enrich, Function, If, and Variable action settings on the policy workflow.

You can use APIs to manage global variables and event enrichment policies to fetch the variable values. For more information, see Managing global variables with REST APIs,

From the GUI, you can update global variables but not create them. For updating global variables from the GUI, see Actions for advanced and time-based enrichment.

Global variables are addressed by name, so you must know the name of the global variable to use it. Global variable names do not contain a space and are prefixed with $GV. A global variable consists of attributes that can have String, List of String, Integer, and List of Integer data types. Multiple attributes inside a global variable can have different data types. You cannot nest global variables. Use the following syntax to refer to an attribute listed in a global variable:

$GV.<VariableName>.<AttributeName>

Examples for global variables

Refer the following global variable examples:

Example 1

$GV.entity_details.entity_name=hostA.<company_name>.com
$GV.entity_details.entity_location=Houston
$GV.entity_details.entity_status=Up

Here, entity_name, entity_location, and entity_status are attributes of the $GV.entity_details global variable.

Example 2

$GV.nagios_contact.contact_name=John Doe
$GV.nagios_contact.alias=jdoe
$GV.nagios_contact.email=jdoe@nagios.com
$GV.nagios_contact.pager=555-5555@pagergateway.<company_name>.domain

Example 3 (Global variables used in the external source file for dynamic enrichment policies) 

Global-Variable-Host-Owner-Mapping.csv

The following column mappings are in this file:

Column 1 corresponds to the Hostname match slot
Column 2 corresponds to the Message match slot
Column 3 corresponds to the Owner enrichment slot

Was this page helpful? Yes No Submitting... Thank you
Last modified by Shreya Gurukiran on Jul 06, 2022
global variable event enrichment policy ev_enr_correlation

Comments

  1. Mukta Kirloskar

    Hi Tim,

    I am moving this comment to the master space and removing it from here.

    Thanks.

    May 20, 2022 03:45

Log in or register to comment.

Example: Dynamically enriching events from an external file
Event correlation for aggregating related events
© Copyright 2020-2022 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.