Configure the webhook in Sysdig Monitor

Configure webhook endpoints so that Sysdig Monitor can use the endpoint to communicate with Incident Response.

Before you begin

Role required: Responder, Manager, or Administrator

About this task

Note: While this integration with a third-party product is supported, the documentation here is based upon information provided by that third-party. More current information about the operation of that third-party’s system may be available from them directly.


  1. Log in to your Sysdig Monitor application console.
  2. Navigate to Settings > Notification Channels or Integrations > Notification Channels.
  3. Click Add Notification Channel and select Webhook.
    Add a webhook notification channel.
  4. In the New Webhook Channel form, fill in the fields:
    Field Description
    Url Webhook URL copied from Incident Response.
    Channel Name Name for the webhook notification channel.
    New webhook channel.
  5. Select the events for which you want to trigger alerts.
  6. Click Save.
  7. Optional: To test the connection with Incident Response, click Test Channel.

    An alert is created in the LIR with the Priority P3.

What to do next

Add the webhook notification channel to the alerts that you want Lightstep Incident Responseto handle.
  1. Navigate to Alerts. Create a new alert or edit an existing one.
  2. Enter the required details for the alert, including metrics and conditions. For detailed information, see Alerts.
  3. In the Notifications section, select the webhook created for Incident Response.

    Add notification channel to alert.

  4. Select the alert severity and save the alert.