Send your Azure alerts to ITSM tools using Action Groups

Community Manager

At Ignite 2017, we announced the new IT Service Management (ITSM) Action in Azure Action Groups. As you might know, Action Groups is a reusable notification grouping for Azure alerts. Users can create an action group with functions such as sending an email or SMS, as well as calling a webhook and re-use it across multiple alerts. The new ITSM Action will allow users to create a work item in the connected ITSM tool when an alert is fired.

 

This action builds on top of the IT Service Management Connector Solution in Azure Log Analytics. The ITSM Connector solution provides a bi-directional connection with the ITSM tool of your choice. Currently the solution is in public preview and supports connections with ITSM tools such as System Center Service Manager, ServiceNow, Provance, and Cherwell. Today, through the ITSM Action, we are bringing the same integration capabilities to Azure alerts.

 

ITServiceManagement.PNG

 

Read more about it in the Azure blog.

 

5 Replies

Want to know if below workflow is supported with OMS and SNOW integration

 

Get filtered Incidents from SNOW to OMS -> OMS to invoke remediation runbook for specific Incident  -> runbook sends the result back to OMS --> OMS to update the results back to the Incident workflow in SNOW and take action like resolve or assign to a group.

please respond If you have any suggestion/alternate solution to accomplish this.

 

Hi Pravin, we're looking into that and will reply as soon as we can. Thanks, Noa

Hi Pravin, this is the explanation I gathered so far:

"The exact integration is not available. However, the following can provide the equivalent: Set up alert in OMS to trigger a runbook and create an incident in SNOW – this is available as part of the ITSM connector solution in OMS. As part of the runbook, based on the results, the incident workflow of SNOW can be updated (this will involve invoking APIs in SNOW via the runbook; native integration not available)."

 

Does that help you proceed with this?

Hi Noa, Currently we have direct integration of SNOW with SCOM where it generates Incident based on SCOM alerts. Have to see how feasible it is to configure similar integration with OMS for Incident creation of each type of alert. Do you have any sample document for the workflow you suggested ?

Hi Praveen,

 

You can use the procedure described in the documentation here. Please feel free to contact our team on omsitsmfeedback@microsoft.com if you need more details.

 

Regards,

Snehith