EADAN (Event Automation and Data Analysis)
Prompted by team Kwivira ’s legacy with IT infrastructure management, we decided to explore the current state of that market and found some interesting data points.
Our research showed that the dominant players had made monitoring too hard, too complicated, and this resulted in a plethora of overpriced offerings. In addition, this complexity spawned the need for extensive services contracts just to get your money’s worth from these products that often became scope overkill for most basic client requirements. So in our view, there seemed to be opportunities to enhance customer choice which led us to the following endeavor:
We created a more "value-based" solution for this space called EADAN.
It’s designed for IT admins & many users to easily set up & control all of their monitoring needs- from the basics (i.e.Disk/CPU/Memory-usage) to anything else they want to see- a concept we refer to as “just enough monitoring”. EADAN also provides easy to use filters & has options to deal with the unwanted noise, the setting of notifications based on custom criteria, and includes a preconfigured Dashboard showing your default views in many different formats;
All in a cost-effective manner that is not based on the amount of data processed but on what you need and want to see.
Dashboard example with Url, Cpu, Mem and Disk usage.
HOW IT WORKS
EADAN is meant to be a SaaS application but it can just as easily be run locally on any current windows implementation. It collects events from distributed agents. It is written in Java using a Dashboard as the user interface for viewing the data from the agents as loaded in the database.
EADAN is an agent based event collection application. There are two agents for each event feed. The Lower Level (or server based agent) is designed to directly communicate with the database server application and receive filtered events from the Top Level (or client based agent). The agents act in concert to correctly identify and process an event; as such the Server/Client agent pair is unique to a given EADAN implementation. Each agent has its own defined ruleset and as a result, the user can define a coarse ruleset at the client agent and a finer ruleset at the server agent. The user is allowed to specify the severity of an event (Critical, Major or OK) as well as defining if the event should be Accumulated or De-Duplicated. Also, as part of defining the agent, the user has the ability to assign a notification group which uses both severity and/or a regular expression to determine which events to send to the notification group (which can be a single user email or an email group). Once EADAN receives an event that has passed both the Client and Server rulesets, it is assigned the associated Severity and placed into the database. Once the event is in the database, the user can (through the standard EADAN interface) change the status of the event (from Opened to Assigned or Closed). The user can also assign an individual to work on the event. Finally, the user can change any aspect of the event or even create a ‘test' event within the EADAN system.
EADAN also offers Agentless monitoring using PowerShell. We have created a single powerShell agent that can monitor multiple Windows machines without having to actually place an agent on the instance.
Eadan also offers VoIP (Voice over IP) monitoring. We utilize a combination of SNMP and integration into the CDR (Call Detail Records) to monitor the health of Communication Managers and the back end of the VoIP Components and Handsets.
EADAN Dashboard is a new feature that allows a user to view metric data (such as %CPU used, %Memory used or %Disk space used). The dashboard is linked directly to the basic EADAN interface and allows the user to quickly access the dashboard and also, from the dashboard, go back and look at the event details of any given event.
The EADAN system is design specifically for the small to medium business users who wishes to understand better what is happening in their network without having to spend months and hundreds of thousands of dollars. EADAN can be used by a NOC operator and configured within one to three days depending on how many agents are required to correctly identify the necessary information. Finally, since the events are stored in a relational database, third party database tools could be used to create different types of reports.
Typical Alarms view. Top half of the dashboard. Showing only the Critical and Major alarms. All OK are filtered out.
Powershell agent integration. Remote Powershell to any machines through our Powershell agent.
Our Business Mission
Kwivira Inc. based in the Washington DC metro area is a software and solutions group dedicated to providing applications for business operations support services. Our mission is to simplify systems and technology monitoring process.
Kwivira was founded to build an Enterprise Request Management platform. While initially targeting Human Resources and Information Technology, we have evolved over the last several years and our focus today is on simplifying systems and data monitoring processes including but not limited to SaaS environments as well as on-prem technology and systems. Our platform is called EADAN (Event Automation and Data Analysis). EADAN is a web based monitoring system that is used to manage your systems and data.