Search results for "{{ search.query }}"

No results found for "{{search.query}}". 
View All Results

Alert Logic Integration

Alert Logic a leader in security and compliance solutions for the cloud, provides Security-as-a-Service for on-premises, cloud, and hybrid infrastructures, delivering deep security insight and continuous protection for customers at a lower cost than traditional security solutions. OpsGenie is an alert and notification management solution that is highly complementary to Alert Logic's alerting mechanism.

What does OpsGenie offer to Alert Logic users?

By using OpsGenie’s Alert Logic Integration: you can forward Alert Logic alerts to OpsGenie. OpsGenie can determine the right people to notify based on on-call schedules, using email, text messages (SMS), phone calls, iOS & Android push notifications, and escalating alerts until the alert is acknowledged or closed.

Functionality of the integration

When an alert is created in Alert Logic, it creates an alert in OpsGenie.

Add Alert Logic Integration in OpsGenie

  1. Please create an OpsGenie account if you haven't done so already.
  2. Go to OpsGenie's Alert Logic Integration page.
  3. Specify who should be notified for Alert Logic alerts using the "Teams" and "Recipients" fields. Autocomplete suggestions will be provided as you type.
  4. Copy the Webhook URL.
  5. Click on "Save Integration."

Configuration in Alert Logic

  1. In Alert Logic, Navigate to Management --> Notifications --> Webhooks.
  2. Select +Add New, add a Name/Title.
  3. Paste the integration API URL into URL.
  4. Click Save.
  1. Navigate to Management --> Notifications --> Policies.
  2. Either edit or create a new policy.
  3. In the Alert Recipients field, add the previously created webhook.
  4. Click Save.

Sample payload sent from Alert Logic

Create Alert payload:

{
  "aggregated_alerts_count": 0,
  "additional_content": [],
  "alert_definition_type_id": "XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX",
  "customer_id": 111111,
  "data": {
    "message": "Alert Date : 2016-01-15 21:53:09 GMT\nCustomer Name : Your-customer-name\n\nAlert Type : log\nAlert Name : Log Correlation Alert Test - Your-customer-name\nMessage Type : Unix DHCP IP Assigned\n\nLogEvent link:\nhttps://invision.alertlogic.net/log_message.php?id= XXXXXXXXXXXXX",
    "alert_rule_id": 1111,
    "source": "correlation_alert_rules"
  },
  "description": "Your-customer-name LogEvent: Log Correlation Alert - Your-customer-name",
  "id": "XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX",
  "product": {
    "name": "Log Manager"
  },
  "severity": "warning",
  "state": "created",
  "tags": ["example_tag", "example_tag2"],
  "timestamp": 1452894789,
  "type": "correlation",
  "deleted": false,
  "notifications": [
    {
      "id": "XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX",
      "timestamp": 1452894789,
      "alert_id": "XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX",
      "status": "pending",
      "updated": 1452894789,
      "policy_id": "XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX",
      "target_id": "XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX",
      "target_cid": 111111,
      "target_label": "testing",
      "target_channel": "webhook",
      "target_target": "http://your-web-hook-url/",
      "target_contact_id": null
    }
  ]
}

This payload is parsed by OpsGenie as:

{
  "aggregatedAlertCount" : 0
  "description" : "Alert Date : 2016-01-15 21:53:09 GMT\nCustomer Name : Your-customer-name\n\nAlert Type : log\nAlert Name : Log Correlation Alert Test - Your-customer-name\nMessage Type : Unix DHCP IP Assigned\n\nLogEvent link:\nhttps://invision.alertlogic.net/log_message.php?id= XXXXXXXXXXXXX"
  "message" : "Your-customer-name LogEvent: Log Correlation Alert - Your-customer-name"
  "productName" : "Log Manager"
  "severity" : "warning"
  "source" : "correlation_alert_rules"
  "state" : "created"
  "type" : "correlation"
  "tags" : "example_tag", "example_tag2"
}

Sample alert

Alert Logic Integration