The VictorOps integration allows you to send a notification to VictorOps anytime activity occurs. This includes IP flagging events in addition to agent mode changes and allowlisting/blocklisting additions and removals.
Adding a VictorOps integration
VictorOps alerts integrations are configured per project.
-
Log in to VictorOps.
-
From the Settings menu, select Integrations. The integrations menu page appears.
-
Under Incoming Alerts, select REST Endpoint.
-
Click Enable Integration if you have not already generated an API key.
-
Copy the Post URL.
-
The Post URL will be in the format of:
https://alert.victorops.com/integrations/generic/XXXXXXXXX/alert/XXXXXXXXXXXXX/$routing_keyChange
$routing_keyto your target group who should be notified of the alert. Failure to do so may result in missed notifications.
-
-
Log in to the Signal Sciences console.
-
Select a site if you have more than one site.
-
From the Manage menu, select Site Integrations. The site integrations menu page appears.
-
Click Add site integration. The add site integration menu page appears.
-
Select the VictorOps Alert integration. The VictorOps alert integration setup page appears.
-
In the Webhook URL field, enter the Post URL copied from VictorOps.
-
Select if you want to be alerted regarding All activity or Specific activity.
- If you selected Specific activity, in the Activity menu choose which types of activity you want the integration to create alerts for.
-
Click Create site integration.
Activity types
| Activity type | Description |
|---|---|
| siteDisplayNameChanged | The display name of a site was changed |
| siteNameChanged | The short name of a site was changed |
| loggingModeChanged | The agent mode (“Blocking”, “Not Blocking”, “Off”) was changed |
| agentAnonModeChanged | The agent IP anonymization mode was changed |
| flag | An IP was flagged |
| expireFlag | An IP flag was manually expired |
| createCustomRedaction | A custom redaction was created |
| removeCustomRedaction | A custom redaction was removed |
| updateCustomRedaction | A custom redaction was updated |
| customTagCreated | A custom signal was created |
| customTagUpdated | A custom signal was updated |
| customTagDeleted | A custom signal was removed |
| customAlertCreated | A custom alert was created |
| customAlertUpdated | A custom alert was updated |
| customAlertDeleted | A custom alert was removed |
| detectionCreated | A templated rule was created |
| detectionUpdated | A templated rule was updated |
| detectionDeleted | A templated rule was removed |
| listCreated | A list was created |
| listUpdated | A list was updated |
| listDeleted | A list was removed |
| ruleCreated | A request rule was created |
| ruleUpdated | A request rule was updated |
| ruleDeleted | A request rule was deleted |
| customDashboardCreated | A custom dashboard was created |
| customDashboardUpdated | A custom dashboard was updated |
| customDashboardReset | A custom dashboard was reset |
| customDashboardDeleted | A custom dashboard was removed |
| customDashboardWidgetCreated | A custom dashboard card was created |
| customDashboardWidgetUpdated | A custom dashboard card was updated |
| customDashboardWidgetDeleted | A custom dashboard card was removed |
| agentAlert | An agent alert was triggered |