ElastAlert Integration Guide

ElastAlert Integration

ElastAlert is a simple framework for alerting on anomalies, spikes, or other patterns of interest from data in Elasticsearch.

How ElastAlert users benefit from PagerTree

ElastAlert triggers alerts when alerting rule conditions are met. PagerTree acts as the dispatcher for these alerts, determining the right people to notify based on on-call schedules. PagerTree notifies them via email, sms, voice, and/or push notifications until the incident is acknowledged or closed.

Functionality of Integration

The ElastAlert is one-way, meaning:

  • When ElastAlert sends PagerTree an alert with (event_type == "create"), an incident is created in PagerTree automatically.

Tutorial Overview

In this integration tutorial we will show you how to send notifications from ElastAlert into PagerTree. The estimated time for this integration is 4 minutes. We assume that you already have a PagerTree and ElastAlert setup (version v0.1.38 or higher) and generally understand how to create rules. If you don’t, make sure to check out the docs.

In PagerTree

  1. From the navigation menu, click the “+ Integration” button. Click Plus Integration Button
  2. In the “Create Integration” box, fill out the following:
    1. Name of the Integration,
    2. Select the Integration Type to ElastAlert
    3. Select an appropriate urgency for when this integration is triggered
    4. Select the team this incident will be assigned to Click Create
  3. Click “Create”
  4. Copy the Endpoint URL Copy Endpoint URL

In ElastAlert

  1. In your ElastAlert rules YAML file add the following, replacing <PagerTree Endpoint URL> with the PagerTree Endpoint URL you copied earlier. See the sample rule in the additional resources section below for a full example.

     pagertree_integration_url: <PagerTree Endpoint URL>
     ... your rules configuration...
     - "pagertree"
  2. Save the rules YAML file
  3. Restart ElastAlert

You have successfully completed the ElastAlert Integration. Now when a alert in ElastAlert created, PagerTree will create an incident and route it to the correct team member that is on-call. If you have any questions please contact support@pagertree.com

Additional Resources