elasticmachine
commented
11 months ago Pinging @elastic/obs-ux-management-team (Team:obs-ux-management)
Open Erikg346 opened 11 months ago
elasticmachine
commented
11 months ago Pinging @elastic/obs-ux-management-team (Team:obs-ux-management)
elasticmachine
commented
11 months ago Pinging @elastic/response-ops (Team:ResponseOps)
elasticmachine
commented
11 months ago Pinging @elastic/unified-observability (Team:Observability)
cnasikas
commented
11 months ago cc @XavierM @shanisagiv1
vinaychandrasekhar
commented
10 months ago @XavierM @shanisagiv1 let's chat on this topic (we've discussed this previously). Thanks
shanisagiv1
commented
10 months ago @vinaychandrasekhar what does Ack status mean for o11y users? Atm we have the life-cycled alerts mechanism so alerts will be Active or Recovered in the next rule monitoring. Also recently we added the "Untracked" for situations where we no longer want to track the state.
Does Ack is for taking ownership of the alerts? does it affect the triggered actions somehow?
@XavierM added this to the next Alerting weekly so we can make sure we're aligned on the behavior here. Thanks
carlosaya
commented
7 months ago following this. we are migrating from another tool and some of our teams are used to this type of functionality in competing products. It would definitely be beneficial to have this option in observability alerts.
Describe the feature: Currently, Security - Alerts has better alert statuses than Observability does. Security has "Marked as Acknowledged" and "Mark as Closed":
Observability currently has "Mark as Untracked" only:
Describe a specific use case for the feature: Our team using Observability would like to use at least "Mark as Acknowledged" to help with too many notifications from alerts. This is acknowledged-based throttling would help alleviate the spam.