Reporting: Alert View

Document created by RSA Information Design and Development on May 2, 2016
Version 1Show Document
  • View in full screen mode
 
  

The Alert view allows you to import, export, manage, and add alerts. Procedures related to this view are provided in Working with Alerts in the Reporting Module

You can perform the following actions using this toolbar:

  • Add an Alert. 
  • Edit an Alert. 
  • Delete an Alert. 
  • Enable an Alert. 
  • Disable an Alert. 
  • Refresh an Alerts List.
  • Import an Alert. 
  • Export an Alert. 
  • Set access permissions for the alert. 
  • View All Templates. 
  • View Alerts Schedule.
  • View an Alert List.

To access the Alert view:

  1. In the Security Analytics menu, click Reports.
    The Manage tab is displayed.
  2. Click Alerts.
    The Alert view is displayed.

The following figure shows the different panels of the Alert view.

106_alert_page_comp.png

The Alert view includes the following features:

  • Alert toolbar
  • Alert List panel

Alert Toolbar 

The Alert toolbar allows you to add, modify, delete, enable, disable, refresh, import, and export an alert. Using this toolbar, you can also set access permissions for the selected alert.

alert_list_pane.png

The following table describes the features in the Alert Toolbar.

                                     
FeatureDescription
run_config_add.png This option allows you to add a new alert to the Reporting module.
del_button.png This option allows you to delete one or more selected alerts.
edit_button.png This option allows you to edit an alert.
Enable This option enables the selected alerts.
Disable This option disables the selected alerts.
refresh_button.png This option refreshes the view.
show_button_104.png The actions menu has the following options: Import, Export and Permissions.

Alert List Panel

The Alert List panel lists all the alerts in a tabular format. The following table lists the various columns in the Alert List panel and their description.

This is an example of the Alert List panel.

alert_list_pane1.png

The following table describes the features in the Alert List Panel.

                               
FeatureDescription
EnabledDisplays the state of the alert:
  • Enabled - the alert is active and fires based on the rule assigned to it.
  • Disabled - the alert is not active.
Pushed?Indicates whether the alert is sent to Decoders or Log Decoders:
  • Yes - Alert is pushed to Decoders or Log Decoders.
  • No - Alert is not pushed to Decoders or Log Decoders.
NameIdentifies the name of the alert. Clicking the alert name displays the rule on which this alert is based in the Define Rules panel.
DescriptionIndicates the alert description.
ActionsIndicates the action the system takes when the alert fires.
The different available action types are:
  • Record
  • SMTP
  • SNMP
  • Syslog
You are here: Reporting Module References > Alert References > Alert View

Attachments

    Outcomes