Summary
This article describes how to manage threat alerts in your environment.
Run a threat detection job first to detect issues and raise threat alerts.
How to resolve threat alerts
- Open Cayosoft Guardian Web Portal.
- Expand Threat Detection node.
- Select Threat Alerts.
- Select an alert to be resolved.
- Press Properties.
- Press Remediate.
- Follow Remediation advice to resolve an issue in your environment.
- Press OK to confirm that the issue has been resolved.
How to dismiss threat alerts
- Open Cayosoft Guardian Web Portal.
- Expand Threat Detection node.
- Select Threat Alerts.
- Select an alert to be resolved.
- Press Properties.
- Press Dismiss.
- Press Yes to confirm.
How to add an object reported by threat alert to an exclusion list
- Open Cayosoft Guardian Web Portal.
- Expand Threat Detection node.
- Select Threat Alerts.
- Select an alert to be resolved.
- Press Properties.
-
Press Resolve.
-
Scroll to the bottom.
- Select Add target object to exclusion list.
- Press OK to confirm.
To disable threat definition and dismiss all related alerts
- Open Cayosoft Guardian Web Portal.
- Expand Threat Detection node.
- Select Threat Definitions node.
- Select a threat definition to be disabled and press Properties.
- Go to Threat Alerts tab.
- To select all alerts, click on the circle that is to the right of the bulb icon.
- Press Dismiss to dismiss all alerts.
- Go to the Settings tab and mark the Disabled checkbox.
- Save the settings of the threat definition.
Comments
0 comments
Please sign in to leave a comment.