Event Management and Best Practices

Event Management and Best Practices

by Tony Bhe, Peter Glasmacher, Jacqueline Meckwood, Guilherme Pereira, Michael Wallace
Released June 2004
Publisher(s): IBM Redbooks
ISBN: None

Read it now on the O’Reilly learning platform with a 10-day free trial.

O’Reilly members get unlimited access to books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Book description

This IBM Redbooks publication presents a deep and broad understanding about event management with a focus on best practices. It examines event filtering, duplicate detection, correlation, notification, escalation, and synchronization. Plus it discusses trouble-ticket integration, maintenance modes, and automation in regard to event management.

Throughout this book, you learn to apply and use these concepts with IBM Tivoli Enterprise Console 3.9, NetView 7.1.4, and IBM Tivoli Switch Analyzer 1.2.1. Plus you learn about the latest features of these tools and how they fit into an event management system.

This book is intended for system and network administrators who are responsible for delivering and managing IT-related events through the use of systems and network management tools. Prior to reading this book, you should have a thorough understanding of the event management system in which you plan to implement these concepts.

Please note that the additional material referenced in the text is not available from IBM.

Table of contents

  1. Notices
    1. Trademarks
  2. Preface
    1. The team that wrote this redbook
    2. Become a published author
    3. Comments welcome
  3. Chapter 1: Introduction to event management
    1. Importance of event correlation and automation
    2. Terminology
      1. Event
      2. Event management
      3. Event processing
      4. Automation and automated actions
    3. Concepts and issues
      1. Event flow
      2. Filtering and forwarding
      3. Duplicate detection and throttling
      4. Correlation (1/2)
      5. Correlation (2/2)
      6. Event synchronization
      7. Notification
      8. Trouble ticketing
      9. Escalation
      10. Maintenance mode
      11. Automation
    4. Planning considerations
      1. IT environment assessment
      2. Organizational considerations
      3. Policies
      4. Standards
  4. Chapter 2: Event management categories and best practices
    1. Implementation approaches
      1. Send all possible events
      2. Start with out-of-the-box notifications and analyze reiteratively
      3. Report only known problems and add them to the list as they are identified
      4. Choose top X problems from each support area
      5. Perform Event Management and Monitoring Design
    2. Policies and standards
      1. Reviewing the event management process
      2. Defining severities
      3. Implementing consistent standards
      4. Assigning responsibilities
      5. Enforcing policies
    3. Filtering
      1. Why filter
      2. How to filter
      3. Where to filter
      4. What to filter
      5. Filtering best practices
    4. Duplicate detection and suppression
      1. Suppressing duplicate events
      2. Implications of duplicate detection and suppression
      3. Duplicate detection and throttling best practices
    5. Correlation
      1. Correlation best practices
      2. Implementation considerations
    6. Notification
      1. How to notify
      2. Notification best practices
    7. Escalation
      1. Escalation best practices
      2. Implementation considerations
    8. Event synchronization
      1. Event synchronization best practices
    9. Trouble ticketing
      1. Trouble ticketing best practices
    10. Maintenance mode
      1. Maintenance status notification
      2. Handling events from a system in maintenance mode
      3. Prolonged maintenance mode
      4. Network topology considerations
    11. Automation
      1. Automation best practices
      2. Automation implementation considerations
    12. Best practices flowchart
  5. Chapter 3: Overview of IBM Tivoli Enterprise Console
    1. The highlights of IBM Tivoli Enterprise Console
    2. Understanding the IBM Tivoli Enterprise Console data flow
      1. IBM Tivoli Enterprise Console input
      2. IBM Tivoli Enterprise Console processing
      3. IBM Tivoli Enterprise Console output
    3. IBM Tivoli Enterprise Console components
      1. Adapter Configuration Facility
      2. Event adapter
      3. IBM Tivoli Enterprise Console gateway
      4. IBM Tivoli NetView
      5. Event server
      6. Event database
      7. User interface server
      8. Event console
    4. Terms and definitions
      1. Event
      2. Event classes
      3. Rules
      4. Rule bases
      5. Rule sets and rule packs
      6. State correlation
  6. Chapter 4: Overview of IBM Tivoli NetView
    1. IBM Tivoli NetView (Integrated TCP/IP Services)
    2. NetView visualization components
      1. The NetView EUI
      2. NetView maps and submaps (1/2)
      3. NetView maps and submaps (2/2)
      4. The NetView event console
      5. The NetView Web console
      6. Smartsets
      7. How events are processed
    3. Supported platforms and installation notes
      1. Supported operating systems
      2. Java Runtime Environments
      3. AIX installation notes
      4. Linux installation notes
    4. Changes in NetView 7.1.3 and 7.1.4
      1. New features and enhancements for Version 7.1.3
      2. New features and enhancements for Version 7.1.4
      3. First failure data capture
    5. A closer look at the new functions
      1. servmon daemon
      2. FFDC (1/2)
      3. FFDC (2/2)
  7. Chapter 5: Overview of IBM Tivoli Switch Analyzer
    1. The need for layer 2 network management
      1. Open Systems Interconnection model
      2. Why layer 3 network management is not always sufficient
    2. Features of IBM Tivoli Switch Analyzer V1.2.1
      1. Daemons and processes
      2. Discovery (1/2)
      3. Discovery (2/2)
      4. Layer 2 status
      5. Integration into NetView’s topology map
      6. Traps
      7. Root cause analysis using IBM Tivoli Switch Analyzer and NetView
      8. Real-life example (1/3)
      9. Real-life example (2/3)
      10. Real-life example (3/3)
  8. Chapter 6: Event management products and best practices
    1. Filtering and forwarding events
      1. Filtering and forwarding with NetView
      2. Filtering and forwarding using IBM Tivoli Enterprise Console
      3. Filtering and forwarding using IBM Tivoli Monitoring
    2. Duplicate detection and throttling
      1. IBM Tivoli NetView and Switch Analyzer for duplicate detection and throttling
      2. IBM Tivoli Enterprise Console duplicate detection and throttling
      3. IBM Tivoli Monitoring for duplicate detection and throttling
    3. Correlation
      1. Correlation with NetView and IBM Tivoli Switch Analyzer
      2. IBM Tivoli Enterprise Console correlation (1/3)
      3. IBM Tivoli Enterprise Console correlation (2/3)
      4. IBM Tivoli Enterprise Console correlation (3/3)
      5. IBM Tivoli Monitoring correlation
    4. Notification
      1. NetView
      2. IBM Tivoli Enterprise Console
      3. Rules (1/2)
      4. Rules (2/2)
      5. IBM Tivoli Monitoring
    5. Escalation
      1. Severities (1/4)
      2. Severities (2/4)
      3. Severities (3/4)
      4. Severities (4/4)
      5. Escalating events with NetView (1/4)
      6. Escalating events with NetView (2/4)
      7. Escalating events with NetView (3/4)
      8. Escalating events with NetView (4/4)
    6. Event synchronization
      1. NetView and IBM Tivoli Enterprise Console
      2. IBM Tivoli Enterprise Console gateway and IBM Tivoli Enterprise Console
      3. Multiple IBM Tivoli Enterprise Console servers
      4. IBM Tivoli Enterprise Console and trouble ticketing
    7. Trouble ticketing
      1. NetView versus IBM Tivoli Enterprise Console
      2. IBM Tivoli Enterprise Console
    8. Maintenance mode
      1. NetView
      2. IBM Tivoli Enterprise Console (1/2)
      3. IBM Tivoli Enterprise Console (2/2)
    9. Automation
      1. Using NetView for automation
      2. IBM Tivoli Enterprise Console
      3. IBM Tivoli Monitoring
  9. Chapter 7: A case study
    1. Lab environment
      1. Lab software and operating systems
      2. Lab setup and diagram
      3. Reasons for lab layout and best practices
    2. Installation issues
      1. IBM Tivoli Enterprise Console
      2. NetView
      3. IBM Tivoli Switch Analyzer
    3. Examples and related diagnostics
      1. Event flow
      2. IBM Tivoli Enterprise Console troubleshooting (1/4)
      3. IBM Tivoli Enterprise Console troubleshooting (2/4)
      4. IBM Tivoli Enterprise Console troubleshooting (3/4)
      5. IBM Tivoli Enterprise Console troubleshooting (4/4)
      6. NetView
      7. IBM Tivoli Switch Analyzer
  10. Appendix A: Suggested NetView configuration
    1. Suggested NetView EUI configuration
    2. Event console configuration
    3. Web console installation
      1. Web console stand-alone installation
      2. Web console applet
    4. Web console security
    5. Web console menu extension (1/2)
    6. Web console menu extension (2/2)
    7. A smartset example
  11. Related publications
    1. IBM Redbooks
    2. Other publications
    3. Online resources
    4. How to get IBM Redbooks
    5. Help from IBM
  12. Index (1/4)
  13. Index (2/4)
  14. Index (3/4)
  15. Index (4/4)
  16. Back cover

Product information

  • Title: Event Management and Best Practices
  • Author(s): Tony Bhe, Peter Glasmacher, Jacqueline Meckwood, Guilherme Pereira, Michael Wallace
  • Release date: June 2004
  • Publisher(s): IBM Redbooks
  • ISBN: None