Configure Sensor Thresholds and Options

You can configure sensors to have different probability thresholds and to include the following optional features: absolute thresholds, alerts, and host exclusions.

Follow these steps:

1. Display the Data Source List page:
   1. Log in to the CA NetQoS Performance Center Console as a user with administrator privileges, if you are not already logged in.
   2. Select Admin, Data Sources.

      The Data Source List page opens.

2. Click the name of the CA Anomaly Detector instance that you want to configure.

   The Monitored Products page opens.

3. Click View Sensors.

   The Sensors page opens and displays the first group of sensors. Click the page numbers at the bottom to page through the sensor list.

4. Double-click the row for the sensor that you want to edit.

   The Edit Sensor page opens.

5. Edit any of the following options that you want to change:
   • Probability Threshold: (Optional) Change the numeric value to change the probability threshold.

     The probability threshold determines the likelihood that the sensor will send out alerts when it detects the behavior it monitors. For more information about probability thresholds, see Probability Thresholds.

   • Absolute Threshold: (Optional) Enter a numeric value to create an absolute threshold.

     Enter the absolute threshold value based on the unit of measure for the sensor. An absolute threshold signals an anomaly if the threshold is exceeded. The anomaly triggers an alert if you select the Alert option. For information about the units of measure for absolute thresholds, see Absolute Thresholds.

     Absolute thresholds are applied before probability thresholds. The program continues to calculate the percentiles for the host/sensor combination even if you set an absolute threshold. These calculations are used if the absolute threshold is removed later or if the probability threshold is exceeded first. An anomaly is created if either threshold is exceeded.

   • Alert: (Optional) Select the Alert check box to send alerts when the probability or absolute threshold is exceeded.

     This option is enabled for most sensors by default. The exceptions are sensors that are most useful when you monitor correlated anomalies (that is, when alerts are triggered for multiple types of sensors).

     For information about settling up Syslog or SNMP trap alert targets, see Configure Alert Targets.

   • State: Select the State box to enable the sensor or clear the check box to disable the sensor.
   • IP address: (Optional) Enter a host IP address and click Add to add the host to the White List, so the host is excluded from anomaly reporting:

     The IP address appears in the White List field.

   • White List: (Optional) Highlight a host in the White List field and click Remove to delete the host from the White List.
6. Close the Edit Sensor page: Click Save or Cancel.

   You return to the Sensors page, which reflects any changes that you saved.