Info |
---|
PagerDuty Notification integration allows Cloudaware to create and update incidents in your PagerDuty using Outbound Webhooks functionality, map PagerDuty incidents to specific Cloudaware CMDB assets and enrich PagerDuty incidents with CMDB data. |
Table of Contents |
---|
Description
Cloudaware uses workflows to initiate a PagerDuty incident based on specific criteria in your environment and resolve an incident once the said criteria is back to normal (optional).
Sample use cases
Create a PagerDuty incident when an inappropriate configuration change is detected.
Create a PagerDuty incident in a specific service when Cloudaware detects a spending or a CloudTrail anomaly.
Update a PagerDuty incident when a critical vulnerability has been remediated.
...
API Key - API Key generated in your PagerDuty account
Note |
---|
If you have PagerDuty Accounts integration enabled, copy the API Key used for this integration (check step 2 of PagerDuty Accounts Integration). |
...
Incident Key Field* is used as a dedup_key. The values of this fieldmust be unique for each PagerDuty incident created. This field will be used by PagerDuty for searching an incident when it is being updated or edited. Leave blank if you are not sure what object field is unique. If Incident Key Field is not specified, CA10__caUuid__c will be used by default to act as the incident identifier.
Resolve Time Field* will be used to trigger the button 'Resolve' on an incident in PagerDuty (e.g. CA10__closeDate__c: if the field is not blank, the incident will be resolved). If Resolve Time Field is not specified, incidents won't be resolved and closed automatically in PagerDuty.
Fields List* requires a list of fields that will be transmitted into a description of the incident in PagerDuty:
Use the line break sign \n after each field API Name to list the fields in an incident description in a certain order:
| Use - sign before a field API Name to exclude the field from being listed in an incident description:
where - Id will exclude Record ID field |
...
*You must type API names of fields in Incident Key Field, Resolve Time Field and Fields List exactly as they are on the object (e.g. CA10__caUuid__c, CA10__disappearanceTime__c, etc). To locate API names of fields on a specific object, go to Setup in the main menu → 'Objects' under the section 'Create' → select the object in question → the section 'Custom Fields & Relationships' → locate the field's API name.
Click Save.
3. Check the integration details. Copy Endpoint URL (https://inbound-dot-cloudaware-vm.appspot.com/inbound-message/pager-duty/{key}) for further configuration.
...
Setting up a workflow rule in Cloudaware
The workflow functionality allows to trigger incidents in PagerDuty when certain criteria is met in Cloudaware.
Create a workflow based on conditions you are interested in and add an outbound message that will use Endpoint URL copied from details of PagerDuty Notification integration. Once conditions are met, the rule will trigger PagerDuty to create a new incident against the service which is being monitored.
Use case: You would like to get a PagerDuty incident created every time when AWS EC2 instance status changes. Create a workflow rule on the object 'AWS EC2 Instance Status Event'.
1. Log in to Cloudaware account. Click Setup in the main menu under your username.
...
3. Select the object for the rule to be applied to and click Next.
4. Add Rule Name (1), set Evaluation Criteria(2) and Rule Criteria(3). Add Filter Logic if necessary. Click Save & Next.
...
The field 'AWS EC2 Instance Status Event Name' should not be blank so that the event is considered to be valid. The field 'Description' should no not contain 'Completed'.
If these conditions are met, every time any AWS EC2 Instance status is changed, Cloudaware triggers the workflow rule to take into action creating a new incident in PagerDuty.
5. Add Workflow Action → New Outbound Message:
...
8. Activate the workflow clicking Activate.
9. Once outbound messages are set up, check your PagerDuty Notification integration in Cloudaware. The green light in 'Status' means that the integration has been enabled successfully. If there is a red light, check API Key and Integration Key used for the integration or contact support@cloudaware.com.
...