Event-Correlation-Management

An event can be defined as the change of state that has significance for the management of configuration item(CI) or IT service. The sole purpose of an event management is to manage various events throughout their life-cycle. Events are typically recognized through the notifications created by an IT service or a monitoring tool. The effectiveness of a service operation depends on knowing the status of the infrastructure and detecting further deviations from any normal or expected operations. This is provided by a capable monitoring and control system; based on two types of tools namely Active Monitoring and Passive Monitoring

Feature Details

Active Monitoring

Poll key CIS is used to determine their status and availability and on the occurrence of any exception, it raises an alert that gets delivered to the appropriate team or tool for further action.

Passive Monitoring

CIS generates the tools not only required to detect but also cor relational operation alerts and communication alerts.

There are three types of events
  • »Informational event: indicates the data to user for decision making.
  • »Warning event: tends to indicate predictive data where exceptions might occur.
  • »Error(exception) event: indicates on occurrence of any abnormal situations where action is required.
The event management process is divided into the following
  • »Event occurrence, notification, detection and logging: Describes how an event is occurred, activities for notification, detection and logging.
  • »Perform event filtering; 1st level cor-relation & 2nd level cor-relation: A set of rules applied to determine how an event would be processed.
  • »Perform response selection: A response is required when 2nd level cor-relation recognizes an event.
  • »Perform event closer: Once the issue has been resolved the event gets terminated.
Features