This documentation supports an earlier version of BMC Helix Operations Management.To view the documentation for the latest version, select 23.1 from the Product version picker.

Monitoring events and reducing event noise


As an administrator, identify actionable events from a large volume of event data by processing events in various ways.

As an operator, use a centralized event view to monitor and manage events.

Scenario: Surfacing critical security events and sending notifications.

You can use various event policies to reduce event noise and efficiently view and identify actionable events.

Jane is an operator at Apex Global. Her job is to watch for any critical events in their environment that might make their system vulnerable. Jane uses the Events page in BMC Helix Operations Management and scans through a large volume of events. She wants to identify critical security events to take immediate action on them. It is imperative to Jane that she can quickly identify actionable events from an event storm. She asks for help from her administrator, Sarah, to reduce event noise.

Sarah configures an event suppression policy to withhold unnecessary events. She also correlates related events and enriches events with additional context to help Jane resolve events faster. Sarah goes a step further and configures automatic notifications for events that Jane is interested in.

Related topics

Detecting-anomalies-by-using-static-and-dynamic-thresholds

Managing-maintenance-windows

Event-classification-and-formatting

The following image describes how event noise reduction takes place:

image2021-8-7_2-51-59.png

Refer to the following table to understand the tasks that help you identify actionable events and reduce event noise:

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*