Integrations

Elastic Cloud - ELK Stack

This document shows you how you can integrate Callgoose SQIBS with Elastic Cloud - ELK Stack.

Incidents will be creating in Callgoose SQIBS when there is a incident created in Elastic Cloud as per the Alert rule configured by you in the Elastic Cloud

In Callgoose SQIBS

Create filter as per the Elastic Cloud workflows.

For test purpose, create an API filter like this

0_Callgoose_Sqibs_Elastic_Cloud_ELK_Stack

Note:After test, create suitable API filter values depending on the payload sent by Elastic Cloud - ELK Stack to create a meaningful incident.

In Elastic Cloud

1. Log in to the Elastic Cloud Dashboard, and on the top search bar, Search for Alerts and Insights. Choose Rules and Connectors Click on Connectors Click on Create connector

1_Callgoose_Sqibs_Elastic_Cloud_ELK_Stack

2. Scroll down and Choose Webhook

2_Callgoose_Sqibs_Elastic_Cloud_ELK_Stack

Fill the following Webhook connectorConnector name: Callgoose SQIBS Connector settings: Method: POST

URL : https://xxxxxxx.callgoose.com/sqibs-api/v1/process?from=ElasticCloudELKStack&token=dTsYgIyXeKz6UIAZ8qE6ik
juh3245234532ogfsbdm5WB0ff8yBzKtkze

3_Callgoose_Sqibs_Elastic_Cloud_ELK_Stack

Click on Add HTTP header

key Content-Type

Value application/json

Note:1. Must add header type since Elastic default Content-Type is not Json format2. How to get endpoint URL3. Refer this link for How to send to Sbiqs API Please make sure you have added API filter contains values in Callgoose SQIBS before you send test notifications to create the incident in Callgoose SQIBS. You may also add API filter after checking API Log

Authentication Require authentication for this webhook should be uncheckedClick on Test tab in the same window

Create an action Body: { "Elastic Test": "Critical : CPU Usage is high on cloudvm01" } Run the testClick on Run

$4_Callgoose_Sqibs_Elastic_Cloud_ELK_Stack$

4. You can see the message Test was successful. Click on Save & close

You can see the Callgoose SQIBS in Connectors

6_Callgoose_Sqibs_Elastic_Cloud_ELK_Stack

5. You can also see that this test notification created an incident in Callgoose SQIBS.

5_Callgoose_Sqibs_Elastic_Cloud_ELK_Stack

6. How you use this “Callgoose SQIBS” Connector in “Elastic Cloud” Click on Rules Tab Click on Create rule Tab

7_Callgoose_Sqibs_Elastic_Cloud_ELK_Stack

7. Name: CPU Usage check on cloudvm01 Notify Choose Every time alert is active Search Rule TypeSearch CPU or scroll down the page and choose CPU Usage as a rule type CPU Usage Notify when CPU is over: Choose 90 % Look at the average over: Choose 5 Minutes

Actions Select a connector type,

Choose Webhook Webhook Connector ,

Choose Callgoose SQIBS

Here we are adding the below variable in Json format

{
  "Date": "{{date}}",
  "Rule Type": "{{rule.type}}",
  "Rule Tag": "{{rule.tags}}",
  "Rule Space Id": "{{rule.spaceId}}",
  "Rule Name": "{{rule.name}}",
  "Rule Id": "{{rule.id}}",
  "Context State": "{{context.state}}",
  "Content Node": "{{context.node}}",
  "Content Short Msg": "{{context.internalShortMessage}}"
  "Content Cluster Name": "{{context.clusterName}}"
  "Content Action Plan": "{{context.actionPlain}}"
  "Content Action": "{{context.action}}"
  "Kibana Base Url": "{{kibanaBaseUrl}}"
}

Run When Choose Default

Scroll down and choose Webhook again.

Webhook Connector , Choose Callgoose SQIBS

now we are going to create Rule for Recovered

'Run When' Choose Recovered.

Here we are adding the below variable in Json format in Recovered Rule Webhook Body too Click on Save

{
  "Date": "{{date}}",
  "Rule Type": "{{rule.type}}",
  "Rule Tag": "{{rule.tags}}",
  "Rule Space Id": "{{rule.spaceId}}",
  "Rule Name": "{{rule.name}}",
  "Rule Id": "{{rule.id}}",
  "Context State": "{{context.state}}",
  "Content Node": "{{context.node}}",
  "Content Short Msg": "{{context.internalShortMessage}}"
  "Content Cluster Name": "{{context.clusterName}}"
  "Content Action Plan": "{{context.actionPlain}}"
  "Content Action": "{{context.action}}"
  "Kibana Base Url": "{{kibanaBaseUrl}}"
}

You can see the newly created Rule in Rules

Note:Whenever Elastic Cloud trigger alert, Callgoose SQIBS will create incident as per the conditions you configured in the Elastic Cloud and Callgoose API filter.

Elastic Cloud

An Advanced Automation platform with effective On-Call schedule, real-time Incident Management and Incident Response capabilities

MORE
ABOUT US

CALLGOOSE
SQIBS

Advanced Automation platform with effective On-Call schedule, real-time Incident Management and Incident Response capabilities that keep your organization more resilient, reliable, and always on

Callgoose SQIBS can Integrate with any applications or tools you use. It can be monitoring, ticketing, ITSM, log management, error tracking, ChatOps, collaboration tools or any applications

Callgoose providing the Plans with Unique features and advanced features for every business needs at the most affordable price.

Unique Features

30+ languages supported
IVR for Phone call notifications
Dedicated caller id
Advanced API & Email filter
Tag based maintenance mode

Signup for a freemium plan today &
Experience the results.

No credit card required

Start today

Integrations

Elastic Cloud - ELK Stack

In Callgoose SQIBS

In Elastic Cloud

Table of Contents

An Advanced Automation platform with effective On-Call schedule, real-time Incident Management and Incident Response capabilities