SCO/SCOM 2012: Get Alerts / Monitor Alerts – How to Filter on empty/null property

When using orchestrator, a lot of activities contain a filter

Get Alert / Monitor Alert is some of them.

The following workaround is tested for the above 2 activities, but i think it does apply to other filter activities too. (have not had the time to test yet, comments are welcomed!).

I ran into an unexpected behavior today:

I was using a filter saying “TicketId Does not equal No Automatic Escalation”, and i was expecting to get alle alerts that did not have this text in the field.

but I did not get all of them!. I only got the ones that did have a value and not the ones that had nothing in TicketId (which was the alerts i wanted).

so it seems that this filter does it work when the filtering property has the value “nothing” also known as NULL.

i had to rethink my solution, and i figured that any alert that was New and had nothing in TicketId would be the ones i need.

So i changed the filter to get the empty ones.

You can do this by filtering on the text NULL

Enjoy!

Om forfatteren: Jakob Gottlieb Svendsen

Twitter: @JakobGSvendsen

Jakob Gottlieb Svendsen is a Microsoft Cloud and Data Center Management MVP (http://mvp.microsoft.com/en-us/default.aspx), Working as Global Lead Developer, Senior Consultant and Trainer at CTGlobal, where he is one of the driving forces in keeping CTGlobal a System Center Gold Partner and member of the System Center Alliance.

Since he started at Coretech in 2007, he has focused on Scripting and Development, primarily developing tools, extensions and scripts for the System Center Suite. His main area is Automation (including OMS/Azure Automation, Service Management Automation, PowerShell and Orchestrator). Another area is Windows Azure Pack / Azure Stack, where he does implementation, development, workshops and presentations. He is a world-wide renowned voice in the Automation field.

He is passionately devoted to the community, to which he contributes by being a moderator at TechNet and sharing his knowledge at https://blog.ctglobalservices.com/jgs

Co-founder: PowerShell User Group Denmark
Speaker at MMS 2016, Minneapolis (www.mmsmoa.com)
SCU Europe 2014, 2015, 2016 (www.systemcenteruniverse.ch)
Microsoft TechEd North America 2014, Houston
NIC 2012,2013,2014,2015, Oslo (www.nic.com)
Microsoft CampusDays 2011, 2013, Copenhagen
Microsoft TechDays 2015, Sweden (www.techdays.se)
Microsoft Partner Event: New in SC2012 SP1
User group meetings (PSUG.DK , SCUG.DK/BE/NO, AZMUG + more)
Microsoft Certified Trainer.
Microsoft Scripting Guys Forum Moderator

Main working areas:

Automation (Azure Automation, SMA, SCO)
Windows Azure Pack / Azure Stack
System CenterVisual Studio Team Services / Team Foundation Server
Development:C#.Net, VB.NET, VBScript, PowerShell, Service Manager, OpsMgr, ConfigMgr
Orchestrator
Windows Azure Pack / Azure Stack

Training:

Azure Automation
Service Management Automation
System Center Orchestrator
PowerShell, VBScript, C#.Net, VB.Net
Windows Azure Pack / Azure Stack Development Workshops

En kommentar

Security Blog november 12, 2013 af 22:30

Security Monitor Screen Filter

[…] s, but i think it does apply to other filter activities too. (have not had the t […]

Der er lukket for kommentarer.

SCO/SCOM 2012: Get Alerts / Monitor Alerts – How to Filter on empty/null property

Share This Story, Choose Your Platform!

Om forfatteren: Jakob Gottlieb Svendsen

Beslægtede indlæg

Azure Automation Form Generator

PowerShell: Setting Azure Active Directory Diagnostics Forwarding

SCCM: Improved MDT – “Execute Runbook” Script

Set computer name with Autopilot in Windows 1809

Create ConfigurationItems and Baselines without killing your mouse

En kommentar