This topic covers information of parameters required in creating and managing aggregation rules for automating the incident creation process as part of the incident management workflow.
To access the Aggregation Rules view, in the Security Analytics menu, select Incidents > Configure > Aggregation Rules. The Aggregation Rules view is displayed.
The Aggregation Rules tab consists of a grid and toolbar.
Aggregation Rules Grid
The following table lists the parameters that need to be provided for creating new aggregation rules.
The following table lists the operations that can be performed in the Aggregation Rules view.