Adding an incident detection rule

To manage incidents, you must add a rule that triggers incidents when the system detects abnormal behavior in your web traffic. To perform this procedure, you must have Operator-level access, or higher.

To add an incident-detection rule

Example

Create a rule that will trigger incidents when too many pages for your billing application violate their Service Level Thresholds (SLTs). The page that Watchpoint used to identify traffic for your billing application, is called MyBillingApplication.

  1. In a Real User Analyzer component, point to Administration > Threshold and problem detection and click Incident detection.
  2. On the Action menu, click Add.
  3. In the Name box, type Performance for MyBillingApplication.
  4. In the Watchpoint list, type a name for the rule.

    For example, if you have a Watchpoint called MyBillingApplication that identifies traffic for your billing application and you want a performance rule to create incidents when too many pages violate their SLTs, you could type Performance for MyBillingApplication.
  5. For Type, select the type of rule that you want to create:
    • Performance — The incident will trigger each time when system detects too many pages violating Service Level Thresholds (SLTs)
    • Availability — The incident will trigger each time when system detects an abnormally high percentage or errored requests
       You can customize, which errors the system monitors for incidents
    • Volume — The incident will trigger each time when system detects an abnormally high or low number of requests

      Select Performance.
  6. To activate the rule immediately after creation, leave the Activate box selected.
  7. To edit advanced settings for this rule, click Next and proceed to Configuring-advanced-detection.

    The following tabs open:
  8. Click Save.

Troubleshooting

On occasion, new incident rules fail to detect incidents. Should this problem occur, open and resave the rule. 

Where to go from here

Configure advanced detection parameters.

Related topics

Detecting-incidents
 Localizing the analyzed traffic
Configuring-incident-notifications

 

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*