Alert List
The alert management page provides an alert-centric view independent of incidents, where you can see detailed information about all alerts regardless of whether they have been grouped into incidents. Go to Incident List → Alert List to access the alert management page. The alert list displays the following information:| Column | Description |
|---|---|
| Severity | Displays alert severity as a color bar (Critical, Warning, Info) |
| Title | Alert title description |
| Processing Status | Whether the alert is closed (Closed / Not Closed) |
| Recovery Status | Whether a closed alert has auto-recovered (Recovered / Not Recovered) |
| Duration | Time elapsed from alert trigger to current time or closure |
| Associated Events | Number of raw events associated with the alert |
| Associated Incident | The incident this alert belongs to; click to navigate to incident details |
| Trigger Time | When the alert was first triggered |
| Integration Source | Integration name and type (shared or dedicated) that the alert originated from |
| Channel | The channel this alert belongs to |
Silenced or inhibited alerts display a special marker before the title to help you quickly identify them.
Filtering and Search
The top of the alert list provides rich filtering capabilities, similar to the incident list, supporting filtering by time range, severity, labels, and other conditions. Filter conditions are saved in local storage and persist after page refresh.Batch Operations
You can select multiple alerts in the list for batch operations, such as batch closing.Using Aggregate View
In addition to the standard list view, the alert list also supports Aggregate View. Aggregate view groups alerts by specified dimensions, displaying group cards on the left and alert details for the selected group on the right.Create aggregate view
After switching to aggregate view, if no aggregation rules have been created, the system guides you to create your first aggregate view.
Select grouping dimension
Select the aggregation rule for grouping. The system groups alerts by that dimension.
In aggregate view, the system matches at most 100 records for grouping display. To view full data, switch to list view.
Alert Details
Click an alert title to enter the alert details page. The alert details page provides three tabs:| Tab | Description |
|---|---|
| Alert Overview | Shows alert description, labels, attributes (channel, duration), images, alert status timeline (trigger and close time), alert source, associated incident, and Links |
| Timeline | Shows all event records throughout the alert lifecycle |
| Associated Events | Shows the list of all raw events associated with this alert |