Overview

This article describes the Policy Manager email alert mechanism in JetPatch.

Alerts are sent when policy evaluation or remediation exceptions occur, or when a new endpoint is not processed within a timeout period.

It also covers watchdog configuration and customization of alert message subjects and bodies.

Alert Trigger Events

The Policy Manager alert will be sent on the following three events:

Evaluation exception occurred
Remediation exception occurred
A new endpoint was added and has relevant rules for provisioning, but was not processed during a timeout period

Each type of alert will be sent once it occurs.

When the evaluation completes successfully, a 'Back to normal' alert will be sent.

To manage the third case (endpoint timeout), a watchdog was introduced, which sets timeout points for endpoints of that type.

The timeout point is discarded on successful evaluation for the endpoint.

The following properties control the watchdog behavior (all shown values are defaults):

compliance.alert.timeout.sec=7200 # default

compliance.alert.watchdog.job.enabled=true # default

compliance.alert.watchdog.initial.delay.sec=1800 # default

compliance.alert.watchdog.interval.sec=300 # default

The following properties can be added to the configuration file to modify the subject and body of each alert type:

# evaluation exception

mail.alerts.evaluation.subject=WARNING - Intigua Policy is inactive

mail.alerts.evaluation.text=Evaluation exception occurred: %s

# remediation exception

mail.alerts.remediation.subject=WARNING - Intigua Policy remediation inactive

mail.alerts.remediation.text=Remediation exception occurred: %s

# endpoint timeout exception

mail.alerts.timeout.subject=WARNING - Intigua Policy is inactive

mail.alerts.timeout.text=Evaluation timeout occurred

# back to normal alert

mail.alerts.restored.subject=Intigua Policy is back to normal

mail.alerts.restored.text=Intigua Policy is back to normal