Bird
Raised Fist0

You want to create an alert in Elasticsearch to notify when CPU usage exceeds 80% for 5 minutes. Which approach is best?

hard📝 Workflow Q8 of Q15
Elasticsearch - ELK Stack Integration
You want to create an alert in Elasticsearch to notify when CPU usage exceeds 80% for 5 minutes. Which approach is best?
AUse Watcher to create a threshold alert on CPU usage metric
BRun a manual query every 5 minutes to check CPU usage
CUse Kibana dashboard filters to highlight high CPU usage
DConfigure Beats to stop sending data when CPU is high
Step-by-Step Solution
Solution:

  1. Step 1: Identify alerting tools in Elastic Stack

    Watcher is the built-in alerting feature to automate notifications based on conditions.

  2. Step 2: Match alert requirement to tool

    Watcher can monitor CPU usage metrics and trigger alerts when threshold is exceeded for a duration.

  3. Final Answer:

    Use Watcher to create a threshold alert on CPU usage metric -> Option A

  4. Quick Check:

    Automated alerting = Watcher [OK]
Quick Trick: Use Watcher for automated threshold alerts [OK]
Common Mistakes:
MISTAKES
  • Relying on manual queries for alerts
  • Using dashboards only for visualization
  • Misconfiguring Beats to stop data

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More Elasticsearch Quizzes
Advanced Patterns - Search after for efficient pagination - Quiz 3easy Advanced Patterns - Async search for expensive queries - Quiz 13medium Advanced Patterns - Point-in-time API - Quiz 7medium Advanced Patterns - Point-in-time API - Quiz 4medium ELK Stack Integration - Alerting and notifications - Quiz 3easy Performance and Scaling - Replica management - Quiz 10hard Security - Field and document level security - Quiz 13medium Security - Audit logging - Quiz 14medium Security - Why security protects sensitive data - Quiz 15hard Security - API key management - Quiz 12easy