Administer events An event is a notification from one or more monitoring tools that indicate something of interest has occurred, such as a log message, warning, or error. The manner in which events process and alerts generate are based on the following factors: Event collection configuration via MID Server, script, SNMP trap collector, email. Event rule, alert binding, and event field mapping configuration for processing events from various sources. You can view event information in the following places: The event list view displays the entire list of events. Under Event rules, you can view a list of individual events or a group of events that are not associated with any event rule. If an event rule or event field mapping used the event or group of events to generate an alert, the event information appears in the Activity section of the alert. View eventsEvent Management tracks individual events to manage external systems. An event is a notification from one or more monitoring tools that indicates that something of interest has occurred, such as a log message, warning, or error. Event Management receives or pulls events from one or more external event sources and stores them in the Event [em_event] table. Event Management provides a list of raw incoming events. Event process flowEvent Management receives external events and generates alerts based on event and alert rules. Events can be sent directly to your instance using an email server, script, SNMP trap, or a web service API. The corresponding alerts appear on dashboards for tracking and remediation purposes. Event identifiersEvent fields uniquely identify each event. Event Management uses this information to determine whether to create a new alert or update an existing one. Automatic CI creationIT and Operational Metrics events pushed from specified sources can automatically create CIs.Event collection configurationEvent Management receives external events via an event collector or script. If you are using a script to collect events, no configuration is required. All other methods of collecting events require configuration.Event field mapping configurationEvent field mappings are used to map values from specific fields to values in other fields. Event Management stores event field mappings in the Event Field Mapping [em_mapping_rule] table. The mappings apply after event rule processing and just prior to alert generation. The mapping values from the Event Mapping Pair [em_mapping_pair] table apply to the alert. The original event severity remains unchanged.Event rule configurationYou can configure event rules to generate alerts for tracking and remediation. Event rules are stored in the Event Rule [em_match_rule] table. The rules do not change the event records in the Event [em_event] table. Instead, changes to event data are stored in the ServiceNow instance memory.