Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

Two alert function

https://support.nagios.com/forum/viewtopic.php?t=25404

Page 1 of 1

Two alert function

Posted: Mon Feb 03, 2014 9:06 am
by Satto
Hello,

Will try to explain as best I can, so you will understand what I'm after, it's two new feature I wish you could add.

1. Need a simple "Information" alarm, which is not an alert, but a simply information. An example we have, check if we have the latest firmware on a hardware, then Nagios only display such information, and not trig an alert or send any notification.

2nd Alarms that disappears after acknowledge. We have high demand because we need to be compliant to PCI. One example is a alert that someone has to log in with RDP, then we want to be able to reset the alarm, not fix it, but only receive the information (alert), and then acknowledge it.

Edit:
3rd Same as the 2nd, but if the text has change in the "Status Information" field, we need to acknowledge (reset) it. An example, we install a new policy rule on our FW, the date will now change in the "Status Information" field, now somebody has to acknowledge (reset the larm) this in Nagios (PCI demand).

If you do not already have such a solution, I can only hope that Santa Claus will come early year.

Steen

Re: Two alert function

Posted: Thu Feb 06, 2014 11:53 am
by slansing
1. Need a simple "Information" alarm, which is not an alert, but a simply information. An example we have, check if we have the latest firmware on a hardware, then Nagios only display such information, and not trig an alert or send any notification.

What you could do here, is alter the plugin you are using to check and remove handling of critical and warning stats so that it will always return an OK state, or you could disable notifications on that particular host/service.

2nd Alarms that disappears after acknowledge. We have high demand because we need to be compliant to PCI. One example is a alert that someone has to log in with RDP, then we want to be able to reset the alarm, not fix it, but only receive the information (alert), and then acknowledge it.

This is also based on how you are checking for this, it sounds like you may be parsing a Windows event log for this. You can reset the state of a host or service by using the "submit passive result" command in your service's advanced details, and force an OK state change.

Edit:
3rd Same as the 2nd, but if the text has change in the "Status Information" field, we need to acknowledge (reset) it. An example, we install a new policy rule on our FW, the date will now change in the "Status Information" field, now somebody has to acknowledge (reset the larm) this in Nagios (PCI demand).

The date/time should be changing based on when a state change occurred, unless I am misunderstanding your statement here.

If you do not already have such a solution, I can only hope that Santa Claus will come early year.

Steen
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited