In the Alerts Details view, you can see the details of an alert.
To access the Alerts Details view:
- In the Security Analytics menu, select Incidents > Alerts.
- Double-click an alert.
The Alert Details view is displayed.
Related procedures are available in Filter Alerts.
The following table lists the parameters displayed in the Alerts Details view.
|Total Events||Displays the total number of events.|
|Severity||Displays the level of severity|
|Risk Score||Displays the level of risk.|
|Alert Rule ID||Displays how and by whom the alert was created.|
|Created||Displays details about the date and time when the task was created.|
|Sources||Displays the original source.|
The following table lists the operations that can be performed in the Alerts Details view.
|Back to Alerts|| |
Allows you to navigate back to the Alerts View.
|Show Raw Alert||Displays Raw Alert Data details.|
|View Event Details||Displays details of the event including: related links, data, destination, and source.|
|View Original Event|| |
Displays Event Reconstruction and details on the service, id, type, source, destination, and service.