ScienceLogic
Supported Versions | Type | Authentication Type |
|---|---|---|
< 11.3.0 | Action Script/Webhook | Org Bearer Token |
ScienceLogic is a monitoring and automation platform that allows IT Ops teams to manage their environments in real time. Use the ScienceLogic integration to view and manage alerts from the ScienceLogic platform in BigPanda.
Open Integration Manager
The Open Integration Manager is available for use with this integration. For more information, see the Open Integration Manager documentation.
Payload size
Alert payloads must be 6MB or smaller. Larger payloads will fail to process with BigPanda. We recommend reviewing your configurations to ensure that only actionable, useful information is being sent to BigPanda.
Install the Integration
Install the integration by following these steps:
Create an Action Policy that Executes the BigPanda Snippet
Navigate to the Registry. Select Run Book, and then Actions.
In the Action Policy Editor page, select the Action Type of Run a Snippet
In the Snippet Code section, add the following BigPanda Snippet and then click Save. You can customize the payload by leveraging the global variables from the
EM7_VALUESdictionary. For additional information, see the Appendix: Run Book Variables.
import requests import json url = "https://integrations.bigpanda.io/sciencelogic/alerts?app_key=<Your App Key>" headers = { "Content-Type": "application/json", "Authorization": "Bearer <Your Org Bearer Token>" } payload = { "system_id": EM7_VALUES['%r'], "event_id": EM7_VALUES['%e'], "automation_action_name": EM7_VALUES['%N'], "entity_name": EM7_VALUES['%X'], "severity": EM7_VALUES['%s'], "severity_text": EM7_VALUES['%S'], "first_event_timestamp": EM7_VALUES['%D'], "last_event_timestamp": EM7_VALUES['%d'], "user_note": EM7_VALUES['%_user_note'], "event_message": EM7_VALUES['%M'], "username": EM7_VALUES['%A'], "ip_address": EM7_VALUES['%a'], "event_type": EM7_VALUES['%1'], "event_source": EM7_VALUES['%Z'], "event_policy": EM7_VALUES['%3'], "event_category": EM7_VALUES['%G'], "url_to_event": EM7_VALUES['%H'] } # Save they payload in the global variable so other actions can use this info EM7_RESULTS=payload try: response = requests.post(url, headers=headers, json=payload) response.raise_for_status() print(f'Status Code: {response.status_code}') print(f'BigPanda Alert Sent Successfully: {response.json()}') except Exception as e: print(f'Status Code: 500') print(f'BigPanda Alert Failed to send: {str(e)}')
The new action policy will execute the BigPanda Python snippet.
Uninstall the Integration
Deleting an integration requires that you remove the integration in both the integrated system and BigPanda. We recommend that you first uninstall the integration on the integrated system to prevent traffic from being sent and rejected by BigPanda, since the app key will not exist once you delete the integration in BigPanda.
Caution during replacement
When replacing an existing integration with a new tool or system, we recommend configuring the new integration first to ensure no data is lost.
Deactivate Inbound Integration
If you want to stop sending data to BigPanda but don’t want to delete your integration, you can temporarily deactivate it.
To deactivate an inbound integration:
In BigPanda, navigate to the Integrations tab and select the desired integration from the list. This will open integration details on the right side of the window.
At the top of the integration details, click the Active/Inactive toggle next to the application name to change the status of the integration.
In the integrations list, inactive integrations will be marked with a gray bar.
Alert resolution for inactive integrations
Any active alerts belonging to an inactive integration must be manually resolved or they will stay in the system until the auto-resolve window is reached.
Stop Sending Data to BigPanda
Within the integrated system, disable any settings that send data to BigPanda.
Each system requires specific changes to disable the integration with BigPanda. For example, you must delete the topic in CloudWatch, and you must disable the alert channel in New Relic. To determine the changes for your integrated system, reference the relevant documentation or contact BigPanda support.
Manually resolve any open alerts sent from the integration to remove the associated incidents from your incident feed. These incidents will not automatically resolve without an ok status from the original sending integration.
Delete the Integration in BigPanda
Take the following steps to delete the integration from BigPanda:
In BigPanda, navigate to the Integrations tab and select the desired integration from the list.
In the integration details on the right of the page, click the trash icon, then confirm you want to delete the integration. The integration will be removed immediately.
️Automatic alert resolution for deleted integrations
All active alerts from the integration will be resolved after deletion.
Data removal
This procedure does not remove any data from the integrated system.