With respect to OpenSearch Alerting module, we have seen that if a condition is met for multiple objects/instances at the same time, the number of Alerts it generate does not match the instance count. Ex. If we have created a rule for Device Down Alarm and in real time if 10 devices went down we expect it to create 10 Alerts, but we found random behaviour that is sometimes 6 Alerts were created and sometime 7 but it never match the instance occurrence. Can you please help us out here.
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| More than 500 buckets in Alert by buckets | 3 | 326 | March 16, 2024 | |
| Opensearch alerts are not working as expected | 0 | 537 | December 13, 2022 | |
| Different results in "Discover" and "Alerting" Tab for same Index Pattern | 0 | 95 | April 10, 2024 | |
| Trigger an alert when the count after an aggregation is greater than | 0 | 392 | August 17, 2022 | |
| Kibana Alerting extraction query not showing the correct count in the output | 2 | 410 | February 11, 2022 |