Need to change the severity from informational to minor for CrowdStrike service
Article ID: 414165
Updated On:
Products
DX Unified Infrastructure Management (Nimsoft / UIM)
Issue/Introduction
When the CrowdStrike service goes down, UIM should generate an informational alert within 30 seconds, which will be saved in UIM.
If the service remains down for 5 minutes, the informational alert should convert to a major severity ticket in ServiceNow.
If the service recovers within 5 minutes, the alert should remain informational in UIM and should not trigger any ServiceNow alerts.
Environment
UIM 23.4 and later
Resolution
Create a new NAS processing rule with attach Crowdstrike.lua Script.
Attachments
Feedback
Yes
No
Powered by
