You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Using alerts, Elastic can provide a way to remediate those alerts through some form of automation/remediation using Elastic Agent.
Describe a specific use case for the feature:
An example of an alert would be a windows service "stopped"; the alert could trigger a script to run to "restart" the service.
Also, our customers have been comparing Elastic with popular Observability tools.
These tools seem to offer the ability to remediate an issue. This is very similar to how Endpoint Security can "self heal" by rolling back file changes https://www.elastic.co/guide/en/security/8.16/self-healing-rollback.html
I understand you can use custom webhooks already, and that can be leveraged, but it feels like an opportunity for Elastic to leverage more of Elastic Agent and integrate more within the platform.
Also, I understand there are security concerns. Therefore, Elastic can produce the scripts if needed.
Describe the feature:
Using alerts, Elastic can provide a way to remediate those alerts through some form of automation/remediation using Elastic Agent.
Describe a specific use case for the feature:
An example of an alert would be a windows service "stopped"; the alert could trigger a script to run to "restart" the service.
Also, our customers have been comparing Elastic with popular Observability tools.
These tools seem to offer the ability to remediate an issue. This is very similar to how Endpoint Security can "self heal" by rolling back file changes https://www.elastic.co/guide/en/security/8.16/self-healing-rollback.html
I understand you can use custom webhooks already, and that can be leveraged, but it feels like an opportunity for Elastic to leverage more of Elastic Agent and integrate more within the platform.
Also, I understand there are security concerns. Therefore, Elastic can produce the scripts if needed.
References:
https://docs.appdynamics.com/appd/23.x/latest/en/appdynamics-essentials/alert-and-respond/actions/remediation-actions/remediation-scripts
https://documentation.solarwinds.com/en/success_center/orionplatform/content/core-executing-an-external-program-sw1052.htm
https://www.datadoghq.com/blog/automate-end-to-end-processes-with-datadog-workflows/#:~:text=Use%20the%20full%20Datadog%20platform&text=Now%2C%20teams%20can%20combine%20monitoring,alerts%2C%20events%2C%20and%20threats.
The text was updated successfully, but these errors were encountered: