Hello community,
We are currently using kibana machine learning anomaly detection alerts (anomaly detection jobs) with email actions triggered “for each alert > on status change”.
We have two related requirements regarding the alert notifications, and we would like to understand what is the recommended or supported approach.
- Timezone in alert notifications
At the moment, alert notifications always include timestamps in UTC
Our users are in GMT-3
Kibana UI and dashboards correctly display dates using the browser timezone or America/Argentina/Buenos_Aires
However, email notifications sent by ML alerts always show UTC
Is there any supported way to format alert timestamps in a specific timezone (e.g. GMT-3) directly in the alert action?
Is this a known limitation by design for ML alerts?
Are there any plans or recommendations to handle timezone formatting?
- Alert opening time, closing time and duration
We would like to include the following information in the “recovered / resolved” notification:
Alert opening timestamp
Alert closing timestamp
Total duration of the alert
Is there a supported way to access those?
Thank you very much in advance.