Add an alert that notifies administrators when data collection falls below a defined daily threshold.

What is a one sentence summary of your feature request?

Add an alert that notifies administrators when data collection falls below a defined daily threshold.

Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.

Currently, there is no mechanism to detect when data collection stops or significantly drops, which can lead to unnoticed gaps in audit logs and compliance reporting. This feature would allow administrators to set a daily event threshold and receive alerts if collection falls below that level, ensuring timely investigation and remediation. It’s the best solution because it provides proactive monitoring rather than relying on manual checks or discovering gaps after the fact.

How do you currently solve the challenges you have by not having this feature?

We manually review audit reports and event counts to identify anomalies, which is time-consuming and reactive. This approach often results in delayed detection of issues, increasing the risk of compliance gaps.

Thank you for providing this detailed information. You are correct that the current Health Summary offers only general system status and does not provide sufficient visibility into whether data collection has stopped or significantly decreased. As a result, it can be challenging to identify data ingestion issues in a timely manner.

As a potential approach, it may be feasible to implement a small add-on to extend the existing functionality. Such an add-on could include:

• a configurable list of Monitoring Plan Names to track,
• a specified time interval (e.g., 24–48 hours) indicating how long to wait since the last recorded activity,
• email notification settings for alerting administrators when activity ceases or falls below expected levels,
• required API configuration settings to support this functionality.