Mobile alerting with tracking & escalation for LogicMonitor
Why SIGNL4
LogicMonitor is a leading SaaS-based unified observability and IT operations data collaboration platform for enterprise IT and managed service providers. It helps you gain IT insights, seamless data collaboration at scale, and visibility into networks, cloud, applications, servers, log data and more within one unified platform.
SIGNL4 extends LogicMonitor and adds app-based mobile alerting and incident response including push, SMS text, voice calls, escalations and collaboration. The integrated duty planning helps you to schedule your team’s on-call duties and allows you to see who is on duty at any given time.
How it Works
LogicMonitor uses webhooks to submit alert information to SIGNL4. You can simply configure this by entering your SIGNL4 webhook URL including team secret. Specifically the integration helps you with the following.
- Forwards LogicMonitor events to SIGNL4 for mobile alerting
- Uses HTTP requests / webhook to connect to your SIGNL4 team
- Staff can acknowledge and take ownership for critical events that occur
- Communicate within an alert to address a particular problem
- Alerts are escalated in case of no response
- On-call scheduling to alert the right people at the right time
- Alerts closed in LogicMonitor will automatically close the alerts in SIGNL4, too
- Two-way integration for sending acknowledgements back to LogicMonitor
Scenarios
- 24×7 IT operations with on-call staff
- Critical IT alerting
- Customer service hotline
- Anywhere critical incidence response
- On-call scheduling of IT / network teams
Benefits
- Significantly shorter response times for IT incidents, thus shorter mean time to repair (MTTR)
- Ensures attention for critical alerts and minimizes false alerts
- Clear responsibilities and transparent ownership of IT incidents
- Collaboration with team members when assistance is needed
Alerts in LogicMonitor are sent to SIGNL4 via HTTP request
Event categorization, routing and automated delivery
Persistent Notifications by push, text and voice call with Tracking, Escalation and Confirmation to Staff on Duty
HOW TO INTEGRATE
You configure SIGNL4 alerting in the LogicMonitor web portal.
In the LogicMonitor portal under Settings -> Integrations you add a new integration of type Custom HTTP Delivery.
As HTTP Method you choose HTTP Post and as URL you enter your SIGNL4 webhook URL including team secret.
https://connect.signl4.com/webhook/{team-secret}
Here, {team-secret} is your SIGNL4 team secret.
For resolving alerts in SIGNL4 when the alert gets closed in LogicMonitor you can use the following URL:
https://connect.signl4.com/webhook/team-secret}?ExtIDParam=X-S4-ExterlanlID&ExtStatusParam=status&ResolvedStatus=clear
The Alert Data (Raw and in JSON format) might look like this:
{
"message": "##MESSAGE##",
"type": "##ALERTTYPE##",
"status": "##ALERTSTATUS##",
"level": "##LEVEL##",
"host": "##HOST##",
"datasource": "##DATASOURCE##",
"eventsource": "##EVENTSOURCE##",
"batchjob": "##BATCHJOB##",
"group": "##HOSTGROUP##",
"datapoint": "##DATAPOINT##",
"start": "##START##",
"finish": "##FINISH##",
"duration": "##DURATION##",
"value": "##VALUE##",
"threshold": "##THRESHOLD##",
"userdata": "##USERDATA##",
"cmdline": "##CMDLINE##",
"exitCode": "##EXITCODE##",
"stdout": "##STDOUT##",
"stderr": "##STDERR##",
"externalid": "##EXTERNALTICKETID##",
"X-S4-ExternalID": "##ALERTID##"
}
You can adapt the data according to your needs. However, do not change the parameters “”X-S4-ExternalID” and “status” as these are used to do the matching when resolving alerts.
Now you need to adapt the escalation chain or create a new one under Settings -> Escalation Chains. Here you can add (or edit) a Stage and a recipient. In the Recipient add a user and select the SIGNL4 integration as Contact Method.
In the next step you need to check your alert rules under Settings -> Alert Settings -> Alert Rules. Here you need to make sure to use the SIGN4 integration you have created above as your escalation chain.
That’s it and when a check triggers an alert your SIGNL4 team will receive the notification.
Two-Way Connector App for LogicMonitor
This connector adds two-way functionality to SIGNL4 alerting in LogicMonitor. Alerts that are acknowledged, closed or annotated in SIGNL4 result in a status update in LogicMonitor.
You find the connector app in your SIGNL4 web portal under Apps -> LogicMonitor. The configuration of the LogicMonitor connector is straightforward. You only need a LogicMonitor API Token of type Bearer and the URL to your LogicMonitor instance. You can create the API Token in LogicMonitor under your profile settings. Please create a Bearer API Token.
ALERT OPTIMIZATION
SIGNL4 can further increase the visibility of alerts through its Signals and Services section. Augmenting the color and icon of alerts will provide more relevant information at a glance without having to open the alert.
Change alert color and override title + text
Override text, colors and titles are triggered by keywords set within the mobile app.