Events query
As a tenant administrator or an editor, you can use the Events query type to fetch the event data from BMC Helix Operations Management.
This query type uses the Lucene syntax.
For more information, see https://bit.ly/2O7cyZd.
This query requires the following data:
Examples
Here are a few examples of the the Events query type:
- View all open events.
status:OPEN - View open events based on the device name (wild card), where the event severity is critical.
status:OPEN AND severity:CRITICAL AND source_hostname.keyword:pa-rep-lnx01* - View open events with a separate trend line for the severity type.
- Query: status:OPEN
- Metric: count
- Group by terms: severity
- Then by date histogram: creation_time
Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*