Hi,
Is there a way to use the Elasticsearch Query Alert type to only run an alert during business hours? If so does anyone have an example script?
Any help would be very appreciated.
Hello,
I don't believe there's currently a way to provide times alert monitoring is active vs. not. That might be worth an enhancement request though!
A workaround that might work would be to create the alert as an elasticsearch query alert and specify a timestamp (assuming your index has timestamps on each document) within a certain range as part of the query criteria. The rule would still check at whatever your predefined interval is, but it shouldn't return any results if the timestamps are outside of the range you've defined. You'll have to get a little creative with the date math but it should be doable.
Regards,
Aaron
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.