Event Management Triage Inbox

Esta página aún no está disponible en español. Estamos trabajando en su traducción.
Si tienes alguna pregunta o comentario sobre nuestro actual proyecto de traducción, no dudes en ponerte en contacto con nosotros.

Overview

Datadog Event Management Triage Inbox simplifies incident response by consolidating related events from any source into actionable cases. This centralized view reduces noise and helps teams triage, investigate, and collaborate more effectively. With customizable saved views, you can stay focused on high-priority cases and review correlated alerts, related changes, and telemetry, all in one place.

Triaging and investigating cases

Case triage and investigation begins in the Triage Inbox, where you can sort, filter, and manage incoming cases. Collaborate with teammates, both within and outside of Datadog, to coordinate responses. From there, you can prioritize, assign, investigate, and escalate cases as needed to drive faster resolution.

Getting Started

  1. Navigate to Service Management > Event Management > Triage Inbox.
  2. Select a project from the left-hand panel to display out-of-the-box status views such as Open, In Progress, Closed, and Archived.
  3. Use the display settings icon to choose between split view (for detailed case investigation) or table view (for bulk case review and column configuration). Customize your inbox ranking with the Sort By dropdown-options include Priority, Created at, or Last Updated. Click Save to re-use your customized inbox for future use.
  4. Update the status, priority, and assignment directly on case cards during triage.
  5. Maximize screen space by collapsing the left-hand case project panel and the Datadog navigation bar.
  6. Hover over the case card alert count to preview correlated alerts.

Next Steps

Now that you’ve learned how to triage and investigate cases, use these tools to collaborate with your team, take action on root causes, and streamline response efforts.

Collaborate and Integrate

On the right hand split-view side panel, you can perform the following:

  • Tag and comment: Collaborate with teammates in the case timeline by tagging users and adding notes.

  • Send notifications: Alert stakeholders with Slack, Microsoft Teams, email, or webhooks.

  • Escalate issues: Trigger an incident or page an on-call responder using Incident Management, On-Call, Workflow Automation, or third-party tools.

  • Sync with external tools: Keep Jira and ServiceNow records in sync to ensure external stakeholders stay up to date.

    Event Management Inbox right hand panel, highlighting Escalate drop down

Take Action

  • Mark root cause: Identify and mark a related event, such as a faulty change, as the root cause.
  • Run workflows: Execute remediation runbooks manually or trigger them conditionally with Case Automation Rules.
  • Merge cases: Combine related cases to streamline investigations.
  • Split cases: Separate alerts that require individual investigation.

Note: When all alerts in a case are resolved, the system automatically closes the case. You can also manually mark a case as resolved.

Further Reading

Más enlaces, artículos y documentación útiles:

Send events to DatadogDOC more more Learn more about event correlationDOC more more Aggregate, correlate, and act on alerts faster with AIOps-powered Event ManagementBLOG more more