Description
This article describes how to delete all incidents and alerts.
'Cleared by System' emails and alerts after upgrading to 3.6.2 will be received if notification policy is configuring and if many active incidents are left before upgrade.
3.6.2 clears active incidents which is older than 1 day.
Once received, VA becomes unstable, since alerts and email consumes system resources.
Clear all incidents and delete all alerts by following steps.
Solution
1) Log VA as root.
2) Run 'phtools --stop all'
3) Run 'su - postgres'
4) Run 'psql -d phoenixdb -U phoenix'
5) Execute 'update ph_incident set incident_status=3 where incident_status=0;' <----- This will mark these incidents as 'System Cleared'.
6) Execute 'delete from ph_alert;'
7) Press Control+d to exit psql command line.
8) exit
9) Run 'phtools --start all'
10) Run 'killall -9 java'
Reboot VA instead of performing steps 9 and 10 is another alternative.
