Here’s an example of some configured recipients, some of which are disabled:

Alerts configured for a browser check, all enabled:

Add Recipients

The Users and Groups you set to receive Alerts are set up in the Recipients tab.  

There is a column to define Users and their contact information, as well as Groups.

First Step: Add a User

Recipients are the users or groups of users you select to receive the alerts.

• Click the Add User button.

• Enter the necessary user information:

  • User Name

  • User Description

  • User Phone Number (doubles as Target)

  • User Email (doubles as a Target)

  • Click the Create User button.

  • The user is created, containing the two default targets.

Second Step: Add Group

Recipient groups are collections of user targets you select to receive the alerts.

Create Group

To add a recipient group:

• Click the Add Group button.

• Enter a name for the group

• Find the Users you want to include in the group.

• Click the checkbox next to each Target.

• Click Create Group

  • The group is created, containing the selected user/targets.

Targets

When defining alert recipients, you can have the message delivered via various target services.

For each User or Group Recipient, you add delivery Targets that define the method of delivery.

User

You can select to add PagerDuty, Email, a WebHook integration, or SMS (text message) as targets.

Groups

When you have defined targets for individual users, you can add them to Groups:

Alerts Tab

The Alerts tab allows you to set Severity, Targets (individual users), and Groups (of users) to review alerts according to the parameters you prefer.

Alerts can be set for individual checks and be delivered to multiple Targets.

Add Alert

You can add alerts for any checks and select one or several severities to include in the alert. Each alert can have multiple Recipients, and each recipient can have multiple Targets.

Create Alert

To add an alert:

• Find the checks you want to create alerts for

• Search for checks with the Filter search by

OR:

• Expand the Monitor Groups as needed

• Mark the Checks you want to include in the alert:

• Mark the levels of Severity you want to send alerts for

• Mark the users or groups your want to send alerts to

• Click the Create Alert button.

Image Modified

Image Modified

Event-based Placeholders

%E%

Event symbol. For check-based events, this is the CheckConfig.check_symbol value.

N84_M377_C1000_URL_20090227_013715_307

%M%

Event message text.

Message

%N%

The NETBIOS name of the host is the source of the event.

Node

%QM%

Event message text with any double-quotes (") replaced by single-quotes (').

Message

%S%

Event severity as one upper-case character, I, W, E, or F.

Severity

%SEV%

Event severity as one word, Info, Warning, Error, or Fatal.

Severity

%T%

Agent-local timestamp. Format YYYY-MM-DD HH:MM:SS.

Timestamp

%UTC-T%

UTC timestamp with a 'T' between the date and time portions. Format YYYY-MM-DDTHH:MM:SS.

Timestamp (UTC)

%UTC%

The timestamp of the event is expressed in UTC. Format YYYY-MM-DD HH:MM:SS.

Timestamp (UTC)

For Check-based Events, Use the Following Placeholders

%CHECK_ID%

Check id (32-bit positive integer from CheckConfig.id)

%CHECK_GUID%

Check GUID.

A UUID from CheckConfig.check_guid, in the format XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX

%CHECK_NAME%

Check descriptor (from CheckConfig.check_descriptor)

%CHECK_TYPE%

Check descriptor (based on CheckConfig.check_type)

URL, Command, Ping, Port, Scenario, Fullpage (IE), or Fullpage

%MODULE_NAME%

Check module descriptor (from NodeModule.amm_descriptor)

%OLD_SEV_CHAR%

Previous check severity as an uppercase letter

(I, W, E, or F)

%NEW_SEV_CHAR%

Current check severity as an uppercase letter

(I, W, E, or F)

%OLD_SEV_WORD%

Previous check severity as a word

(Info, Warning, Error or Fatal)

%NEW_SEV_WORD%

Current check severity as a word

(Info, Warning, Error or Fatal)

%RESULT_GUID%

Check Result UUID without dashes. Replaced by an empty string if no result identifier is part of the event.

a8e59d718fa949cb86c9ccfc93ff1876

%RESULT_G-U-I-D%

Check Result UUID with dashes. Replaced by an empty string if no result identifier is part of the event.

a8e59d71-8fa9-49cb-86c9-ccfc93ff1876. Replaced by an empty string if no result identifier is part of the event.

%TT%

Timestamp adjusted to the timezone of the current dispatch target (maybe based on user/customer). Falls back to UTC.

Format YYYY-MM-DD HH:MM:SS (TZ-offset) or YYYY-MM-DD HH:MM:SS if UTC.

%CHECK_TAGS%

A set of Key, Value pairs assigned to the check.

"Key 1: Value 1, Value 2, Value 3; Key 2: Value 1, Value 2, Value 3"

Placeholders that may be available if the Alerter uses a check information cache

%CHECK_DESCRIPTION%

Check description (from CheckConfig.check_description). For CLI-targets, any embedded carriage return/newline (CR/LF) character combinations (\r\n) s are replaced by a space, then the remaining CR and LF are replaced by empty strings.

%xmlsafe:CHECK_DESCRIPTION%

Check description (from CheckConfig.check_description) with any XML-unsafe characters replaced by character entities.

e.g. & -> &. Same rules apply for embedded CR and LF as for %CHECK_DESCRIPTION%.

%GROUPS%

List of monitor groups to which the check belongs. A comma-separated list of "top group/subgroup" entries. Since a check can be associated with more than one monitor group (possibly belonging to different users), the list can contain more than one entry.

%E%

Event symbol. For check-based events, this is the CheckConfig.check_symbol value.

%M%

Event message text.

%QM%

Event message text with any double-quotes (") replaced by single-quotes (').

%S%

Event severity as one upper-case character, I, W, E, or F.

%SEV%

Event severity as one word, Info, Warning, Error, or Fatal.

%UTC%

The timestamp of the event is expressed in UTC.

 Format YYYY-MM-DD HH:MM:SS.

%UTC-T%

UTC timestamp with a 'T' between the date and time portions.

Format YYYY-MM-DDTHH:MM:SS.

%CHECK_DESCRIPTION%

Check description. For CLI-targets, any embedded carriage return/newline (CR/LF) character combinations (\r\n) are replaced by a space, then the remaining CR and LF are replaced by empty strings.

%CHECK_GUID%

Check GUID.

A UUID in the format XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX.

%CHECK_ID%

Check ID.

%CHECK_NAME%

Check name.

%CHECK_TAGS%

A set of Key: Value pair(s) assigned to the check, with the format: "Key 1: Value 1, Value 2, Value 3; Key 2: Value 1, Value 2, Value 3"

%CHECK_TYPE%

Check descriptor.

URL, Command, Ping, Port, Scenario, Fullpage (IE), or Fullpage

%GROUPS%

List of monitor groups to which the check belongs.

A comma-separated list of "top group/subgroup" entries. Since a check can be associated with more than one monitor group (possibly belonging to different users), the list can contain more than one entry.

%LOCATION%

The location from which the check is executed.

%NEW_SEV_CHAR%

Current check severity as an uppercase letter.

(I, W, E or F)

%NEW_SEV_WORD%

Current check severity as a word.

(Info, Warning, Error or Fatal)

%OLD_SEV_CHAR%

Previous check severity as an uppercase letter.

(I, W, E or F)

%OLD_SEV_WORD%

Previous check severity as a word.

(Info, Warning, Error or Fatal)

%RESULT_G-U-I-D%

Check Result UUID with dashes. Replaced by an empty string if no result identifier is part of the event.

a8e59d71-8fa9-49cb-86c9-ccfc93ff1876. Replaced by an empty string if no result identifier is part of the event.

%RESULT_GUID%

Check Result UUID without dashes. Replaced by an empty string if no result identifier is part of the event.

a8e59d718fa949cb86c9ccfc93ff1876.

%TT%

Timestamp adjusted to the timezone of the current dispatch target (maybe based on user/customer). Falls back to UTC.

Format YYYY-MM-DD HH:MM:SS (TZ-offset) or YYYY-MM-DD HH:MM:SS if UTC.

%xmlsafe:CHECK_DESCRIPTION%

Check description with any XML-unsafe characters replaced by character entities.

Check description (from CheckConfig.check_description) with any XML-unsafe characters replaced by character entities, e.g. & -> & Same rules apply for embedded CR and LF as for %CHECK_DESCRIPTION%.

#ALERT_TITLE#

#API_ID#

Slack, ServiceNow

#API_KEY#

VictorOps, OpsGenie, Datadog

#BASE64#

#HOST_ADDRESS#

#INCIDENT_ID#

#MESSAGE#

#MESSAGE_TYPE#

#TARGET_USER#

HipChat, VictorOps

#TITLE#

Splunk

#TOKEN#