Home
Administration
Administering Unica Discover involves configuring and integrating the Unica Discover client framework with your web applications or mobile native applications, installing and administering the databases used by Unica Discover, defining event objects and configuring events, hit attributes, dimensions, and other object attributes used by Unica Discover to monitor mission-critical metrics of your web application's performance.
Unica Discover Administration Manual
Report Access Permissions
Users whose accounts contain the proper permissions may administer Discover reports. Depending on the type of report, permissions to administer individual reports of that type are configured in the report definition.
Anomaly Detection Access Permissions
Anomaly Detection reports enable you to choose to record and report on deviations in values for event and dimension data. These reports allow tracking of the most active data pertaining to your web application.
Anomaly Detections deviation calculations
Discover computes standard deviations, which are used to populate Anomaly Detections. At a global level, you can configure the days over which Anomaly Detections are calculated. In either mode, Hourly and Daily Anomaly Detections are available. You can configure consecutive days or same day calculations. Consecutive Days mode is useful for monitoring variation of recent activity. For a longer term perspective, Same Days may be a better choice. Discover administrators can configure the calculation mode through thePortal Management page. Switching between Anomaly Detection Calculation Modes results in the clearing of the old data from the database. When the mode is changed, data can be back-populated where possible. Avoid changing modes frequently.
Example STD Calculation for Anomaly Detection
Discover implements the Anomaly Detection calculations that are based on extracting the data points over the rolling window, depending on the several factors.

Administration
Administering Unica Discover involves configuring and integrating the Unica Discover client framework with your web applications or mobile native applications, installing and administering the databases used by Unica Discover, defining event objects and configuring events, hit attributes, dimensions, and other object attributes used by Unica Discover to monitor mission-critical metrics of your web application's performance.
- Unica Discover Administration Manual
  - Discover Admin Overview
    This section is an overview to the Discover system and its components.
  - Discover System Monitoring
    Discover provides several mechanisms for monitoring the health of the Discover system and Discover user activities. This section provides access to the various tools available in the Discover system for monitoring it and its users.
  - Portal Management
    This section contains administration topics for managing the Discover Portal and features available through it.
  - Discover Management System
    The Discover Management System (Manage Services) centralizes configuration management for Discover systems on Windows™-based hosts.
  - Database Administration
    The Unica Discover datastore runs on top of a set of four Microsoft™ SQL Server databases.
  - Report Access Permissions
    Users whose accounts contain the proper permissions may administer Discover reports. Depending on the type of report, permissions to administer individual reports of that type are configured in the report definition.
    - Scorecard Access Permissions
      Available through Unica Discover, scorecards enable the graphical display of KPI or process data through the Discover Portal. Scorecards can be scheduled for delivery to selected users.
    - Dashboard Access Permissions
      Available through Unica Discover, dashboards enable the graphical display of scorecard and other reporting components in one or more tabs through the Discover Portal. Dashboards can be scheduled for delivery to selected users.
    - Report Access Permissions
      The Discover Report Builder enables the configuration and display of event and ratio data with dimensional data optionally applied to segment the report.
    - Anomaly Detection Access Permissions
      Anomaly Detection reports enable you to choose to record and report on deviations in values for event and dimension data. These reports allow tracking of the most active data pertaining to your web application.
      - Analyze Anomaly Detections
        Through the Portal, you can generate reports on the anomaly detection that are configured through the Event Manager. To create and review anomaly detection reports, select Reports > Anomaly Detection in the Portal menu.
      - Workflow
        This is a generalized workflow for creating Anomaly Detection reports. Before you begin, you must review and decide the calculation mode to use for calculating Anomaly Detections.
      - Anomaly Detections page
        In the Anomaly Detections page, you can add detectionss to the report, which is immediately refreshed to display the anomalies for the selected focus date.
      - Anomaly Detections Report window
        When changes are made to the Anomaly Detection report configuration, the report window is updated with the new report data.
      - Changing the Focus Period
        The Anomaly Detections report can display anomaly detections over multiple days. You can change the date range for which the Anomaly Detections report is focused.
      - Anomaly Detections report options
        You can modify the report title thresholds and display mode.
      - Anomaly Detections deviation calculations
        Discover computes standard deviations, which are used to populate Anomaly Detections. At a global level, you can configure the days over which Anomaly Detections are calculated. In either mode, Hourly and Daily Anomaly Detections are available. You can configure consecutive days or same day calculations. Consecutive Days mode is useful for monitoring variation of recent activity. For a longer term perspective, Same Days may be a better choice. Discover administrators can configure the calculation mode through thePortal Management page. Switching between Anomaly Detection Calculation Modes results in the clearing of the old data from the database. When the mode is changed, data can be back-populated where possible. Avoid changing modes frequently.
        Updates
        Depending the type of Anomaly Detection, data is recalculated on an hourly or daily basis.
        Basic Calculations
        Anomalies are calculated by using a simple standard deviation formula.
        Example STD Calculation for Anomaly Detection
        Discover implements the Anomaly Detection calculations that are based on extracting the data points over the rolling window, depending on the several factors.
        Ratio Anomalies
        You can also create anomalies that are based on the ratio of two events. To compute the anomaly of a ratio, the ratio is treated as a single event whose count is the ratio of numerator to denominator.
  - Managing User Agents
    Through Discover, you can monitor the different types of user agents that contact your web application. Through a provided set of data objects, Discover can identify the type of traffic that is requesting resources from your web application and then monitor counts and other information that pertains to the type of user agent. These objects can be used as the source data for developing a useful set of user agent-related reports, enabling you to closely monitor the composition of traffic to your site.
  - Configuring User Agent Detection
    This section describes how to acquire and maintain the configuration files necessary for parsing of fixed and mobile user agents and how to prepare those files for use in the Unica Discover platform.
  - Configuring User Agent Events
    To use the data that is injected into the [ExtendedUserAgent] section by the Discover SessionAgentTLTRef, a Discover administrator must create events that create charts for this data.
  - User Agent Tools
    These external utilities can be used to monitor and update user agent configuration data that is required by Discover.
  - bot Detection
    Most commercial enterprise web applications are subjected to significant traffic from web crawling bots. Short for "robot," a bot is a software agent that navigates websites to extract information about them. Some bots are used by search engines for indexing pages.
  - Discover Reference Information
    Use the links below to access reference information on file formats, common standards, and more in use by the Discover system.
  - Integrating Unica Discover and Unica Journey
    Unica Discover and Unica Journey integration works with CEP configuration. The CEP configuration enables the event to be sent to CEP and the external systems. Unica Discover-Unica Journey integration is supported from version 12.1.0.3 onwards.
  - Integrating Unica Discover and Unica Interact
    Unica Discover and Unica Interact integration works with CEP configuration. The CEP configuration enables the event to be sent to CEP and the external systems. Unica Discover-Unica Interact integration is supported from version 12.1.0.3 onwards.
  - Selective Deletion
    You can delete sessions and session fragments from the Unica Discover system with the Selective Deletion tool.
  - ELK Configurations
    Before configuring ELK on Unica Discover, there are some prerequisites:
- Unica Discover Data Export for Data Analysis Administration Manual
- Session Archiving Guide

Example STD Calculation for Anomaly Detection

Discover implements the Anomaly Detection calculations that are based on extracting the data points over the rolling window, depending on the several factors.

The calculations are based on:

Type of anomaly.
Configured required dataset for valid rolling window. If the data set includes fewer than four data points, the standard deviation is not computed and is reported as --.
Calculation mode.

This example shows the differences between daily and hourly anomalies. These configuration options are assumed:

Type of anomaly: Daily and Hourly
Configured required dataset for valid rolling window: The following are the default minimum and maximum values:
- Anomaly Detections - Minimum data points for calculations - 4
- Anomaly Detections - Maximum data points for calculations - 16
Calculation mode: Same Days

For calculating a valid Daily or Hourly anomaly detection with the preceding configuration options, a minimum of four weeks of data is required.

Suppose that you are calculating an anomaly of counts for Event A. The counts are summed in the following manner for Daily or Hourly anomalies in this example:

Day: count
Focus date: sum0
one week ago: sum1
two weeks ago: sum2
three weeks ago: sum3
four weeks ago: sum4

For a Daily anomaly, the counts are summed over 24-hour periods in the rolling window, while Hourly anomalies use hourly counts during the rolling window.

The metric STDev_SameDays is computed by using the following formula:


StDev_SameDays = std of (sum1, sum2, sum3, sum4)

The average of those four sums is computed this way:


avg_SameDays = avg of (sum1, sum2, sum3, sum4)

The count anomaly is then computed with this formula:


countDev_AvgSameDays = (sum0 - avg_SameDays)/StDev_SameDays

Have feedback?
Google Analytics is used to store comments and ratings. To provide a comment or rating for a topic, click Accept All Cookies or Allow All in Cookie Preferences in the footer of this page.