Adjust the sensitivity of anomaly detection for applications

Dynatrace detects four types of anomalies for applications: key performance metric degradations, traffic drops, traffic spikes, and increases in failure rate. Each anomaly type is detected independently and triggers its own problems and alerts.

To adjust global configuration of anomaly detection for applications

  1. In the Dynatrace menu, go to Settings and expand Anomaly detection > Applications.
  2. Select the tab for the required application type. Here you can configure detection for each anomaly type.

Key performance metric degradation

This type of anomaly detection observes key performance metrics and triggers an alert if a metric violates the specified threshold. Dynatrace can detect degradation based on automatic baselining or fixed thresholds.

Dynatrace evaluates degradation for two categories—all actions and the slowest 10%—and triggers an alert if any metric violates the threshold.

To configure key performance metric degradation detection

  1. Turn on Detect key performance metric time degradations and select automatically from the list.
  2. Set degradation values in the remaining fields. Violation of any criterion triggers an alert.
  3. optional To avoid over-alerting, define an actions/min rate below which an application should be considered a low-traffic application. Applications with lower traffic rates are excluded from evaluation.
  4. optional To avoid accidental alerts, define how long an application must stay in abnormal state to trigger an alert.

Traffic drops

This type of anomaly detection learns the normal behavior of your application's traffic over a period of 7 days and triggers an alert if the traffic drops significantly.

To configure traffic drops detection

  1. Turn on Detect traffic drops.
  2. Specify the observed traffic threshold to receive alerts in case of traffic drops.

Traffic spikes

This type of anomaly detection learns the normal behavior of your application's traffic over a period of 7 days and triggers an alert if the traffic rises significantly.

To configure traffic spikes detection

  1. Turn on Detect traffic spikes.
  2. Specify the observed traffic threshold to receive alerts in case of traffic spikes.

Failure rate increase

This type of anomaly detection observes the failure rate of your applications and triggers an alert if the rate exceeds the specified thresholds. Dynatrace can detect failure rate increase based on automatic baselining or fixed thresholds.

To configure the increased failure rate detection

  1. Turn on Detect increase in failure rate and select automatically from the list.
  2. Specify the relative % and absolute % values above which alerts should be sent out. Both thresholds must be violated to trigger an alert.
  3. optional To avoid over-alerting, define an actions/min rate below which an application should be considered a low-traffic application. Applications with lower traffic rates are excluded from evaluation.
  4. optional To avoid accidental alerts, define how long an application must stay in abnormal state to trigger an alert.

Reference period

Davis automatically generates baselines during a recent reference period. The default reference period is the past 7 days.

If monitoring data detected during the reference period is no longer valid—for example, if you've deployed a new version of your application that includes major changes, and you're now receiving a high number of alerts—select Reset to establish a new baseline. Davis will purge the previous reference period and immediately begin collecting data for a new reference period.

Thresholds for a specific application

As an alternative to defining thresholds globally across your entire environment, you can provide fine-tuned thresholds for individual applications. Application-level thresholds override global thresholds for the application, while global settings still apply to other applications. You can revert to globally defined thresholds at any time.

To change threshold settings for a specific application

  1. In the Dynatrace menu, go to Web, Mobile, Frontend, or Custom applications, depending on the application type.
  2. Select the application you want to configure.
  3. In the browse menu (), select Edit.
  4. Select Anomaly detection.
  5. Turn off Use global anomaly detection settings.
  6. Set the application-level thresholds in the same manner as described above for global settings.