Get Started: Device Monitoring and Alerting

Overview

Device Monitoring and Alerting allows you to use predefined rule templates to configure monitoring rules based on your needs. Alerts are generated in near real time once the monitoring rules are enabled. You can view and manage the generated alerts from the Alerts console in the JumpCloud Admin Portal.

Key Capabilities

• Directory and User Monitoring: Receive alerts for user additions and privilege changes in your JumpCloud directory.
• Agent Activity Monitoring: Monitor results of JumpCloud policy application, command execution, and software management.
• Custom Script-Based Monitoring: Create tailored monitoring using custom scripts to alert on specific conditions unique to your environment.
• Flexible Alert Configuration: Set up alerts with customizable thresholds and priorities to focus on what's most important to your organization.
• Centralized Alert Management: View and manage alerts directly from the JumpCloud admin portal.

Supported Platforms

Device support includes macOS, Windows, and Linux devices compatible with the JumpCloud Agent. Mobile Devices are currently not supported.

Limitations

• Software installations on Ubuntu devices via inbuilt application manager will not be identified for generating alerts.

Understanding Alerts

Once you set up and enable some monitoring rules, your devices are constantly monitored  and alerts are generated in near real time when the specified rule conditions are met. 

The following types of alerts are currently available:

• Battery health monitoring alerts
• Command execution failure alerts
• Disk usage monitoring alerts
• Device uptime/offline monitoring alerts
• Policy application failure alerts
• Managed software installation failure alerts
• Software addition and removal alerts (when initiated by end users). 
• User addition to JumpCloud directory

You can view and manage the generated alerts from the Alerts console of JumpCloud’s Admin Portal.

To access the Alerts console:

1. Login to the JumpCloud Admin Portal.
2. To view the Alerts console, you can do any of the following:
   • Go to Insights > Alerts.
   • On the Home page, scroll down to the Open Alerts widget and click Go To Alerts Dashboard.
   • Click the Alerts (bell) icon on the top navigation bar.

You will be redirected to the Alerts console which consists of two dashboards:

• Alerts: You can view, monitor, and manage all alerts here. Jump to Using the Alerts Dashboard to learn more.
  This dashboard consists of four tabs that display alerts based on their status:
  • Open: Displays all open alerts that need your attention.
  • Acknowledged: Displays all alerts that have been marked acknowledged.
  • Resolved: Displays all alerts that have been marked resolved.
  • All: Displays all alerts. 

• Rules: You can create new rules, monitor all the rules created within the organization, and manage the status of each rule here. Jump to Using the Rules Dashboard to learn more.
  You can:
  • Click Rule+ and create new rules.
  • Use the toggle button to Enable or Disable a specific rule.
  • Use the Actions button to select and enable/disable multiple rules at a time.

You will not see any alerts until you configure some monitoring rules. You can use the predefined rule templates to quickly configure some rules as per your requirements. Make sure to specify precise conditions while configuring the rules to receive timely alerts. See Configure Rules for Device Monitoring and Alerting to learn more.

Using the Alerts Dashboard

The Alerts dashboard offers a centralized interface for monitoring and managing all alerts within your organization. It provides a streamlined view of alerts, allowing you to stay informed and quickly address any issues using the available options.

The dashboard consists of four tabs that display alerts based on their status:

• Open: Displays all open alerts that need attention.
• Acknowledged: Displays all alerts that have been marked acknowledged.
• Resolved: Displays all alerts that have been marked resolved.
• All: Displays all alerts. 

Search and Filter

You can use the Search and Filter options to quickly find what you need. You can either type in the Search field or select from a list of predefined filters. 

To use the filters:

1. Click Filter to view a list of predefined filters. 
2. Select one or more filters, and click Apply. The table is updated and displays the filtered results. 
3. You can click Clear All to remove all the filters and reset the table data.

Select Columns

If you want to further curate your dashboard view, you can choose the columns that you want to view using the Columns option. Click the dropdown and select/deselect the required columns. Your dashboard will be updated accordingly to display the selected columns only.

For example, including the Created and Last Updated columns in the dashboard view can help you track when an issue first occurred and its most recent instance. The Priority column shows the severity of the issue and how quickly it needs to be addressed.

Managing Alerts

Alerts dashboard allows you to quickly monitor and manage your alerts. You can perform bulk actions and quickly deal with your alerts from the dashboard itself. This includes changing the status of alerts or deleting them. 

To manage alerts:

1. Select the alerts that you want to update.
2. Click the Actions dropdown.
3. Select one of the following options:
   • Mark as Acknowledged: This indicates that the alert is seen but not yet resolved.
   • Mark as Resolved: This indicates you have found and resolved the alert.
   • Mark as Open: This indicates the alert still needs attention and is not yet resolved.
   • Delete: This deletes the selected alerts from the list.

Viewing Alert Details

While the dashboard provides essential information for each alert, more comprehensive details are available on the individual alert details page. To view details about a specific alert.

1. In the Alerts dashboard, click the alert that you want to view the details for. 

Modifying Alert Status

You can modify the alert status from the details page. 

1. Click the Actions dropdown.
2. Depending on the status of the alert, you will find some or all of the following options. Select the appropriate options:
   • Mark as Acknowledged: This indicates that the alert is seen but not yet resolved.
   • Mark as Resolved: This indicates you have found and resolved the alert.
   • Mark as Open: This indicates the alert still needs attention and is not yet resolved.
   • Delete: You can use this option to delete the alert from the list.
3. Once you’re done, click Alerts Dashboard to go back to the dashboard.

Deleting an Alert

To delete alerts:

1. On the Alerts dashboard, select the alerts that you want to delete.
2. Click the Actions dropdown.
3. Click Delete to delete the alert(s) from the list.

Using the Rules Dashboard

Device Monitoring and Alerting allows you to use predefined rule templates to configure monitoring rules based on your needs from the Rules dashboard. Alerts are generated in near real time once the monitoring rules are enabled. 

While the predefined rule templates are designed to help you save time by quickly configuring rules, they also allow you to customize the rule as per your requirements. You can add relevant descriptions, add precise conditions, and set a relevant priority for your alerts to best suit your needs.

Customizing alert rules allows you to:

• Focus on the metrics most critical to your organization
• Reduce noise by eliminating unnecessary alerts
• Ensure timely notifications for important events
• Align monitoring with your specific IT policies and requirements

You can configure rules using predefined rule templates from the Rules Dashboard.

To view the rules dashboard, click Rules on the Alerts console. The Rules dashboard displays all the existing rules. You can perform the following actions:

Creating a Rule

You can click +Rule to view the rule templates and create a new rule. See Configure Rules for Device Monitoring and Alerting to learn more.

Editing a Rule

You can update a rule from the rules dashboard.

To update an existing rule:

1. Click the rule that you want to update.
2. Make changes as required.
3. Use the Rule Status toggle button to update the status.
   • Enable: to activate the rule so the rule can be used to generate alerts.
   • Disable: to deactivate the rule  rule so it is not used to generate alerts.
4. Click Save.

Your changes are saved and the status is updated.

Updating Rule Status

On the Rules dashboard, use the toggle button to update the status of a rule as required.

• Enable: to activate the rule so the rule can be used to generate alerts.
• Disable: to deactivate the rule so it is not used to generate alerts.

You can bulk update the status of one or more rules from the Rules dashboard.

To bulk update the status for multiple rules:

1. Select the rules on the dashboard.
2. Click the Actions dropdown.
3. Select an option:
   • Enable: to activate the rule. 
   • Disable: to deactivate the rule.

The status is updated for all the selected rules. 

Deleting Rules

You can delete one or more rules from the Rules dashboard.

To delete rules:

1. Select the rules on the dashboard.
2. Click the Actions dropdown.
3. Select Delete and then click Delete again to confirm when prompted.

The rules are deleted and removed from the rules list.