UEBA: Manage Top Alerts

Document created by RSA Information Design and Development on Sep 11, 2018Last modified by RSA Information Design and Development on Feb 9, 2020
Version 17Show Document
  • View in full screen mode

You can export a list of all alerts to a .csv file format. An analyst can use this information to compare the data from other sources in other data analysis tools like tableau, powerbi, and zeppelin.

To export alert data to a .csv file:

  1. Log into NetWitness Platform and go to Investigate > ENTITIES > ALERTS.
    The Alerts tab is displayed.
    Users View, Alerts tab
  2. At the top right, click Export.
    All the alert data is downloaded in a .csv file format. Here is an example of the exported alert data in .csv format:

    Exported csv values displayed in spreadsheet format
Previous Topic:Investigate Indicators
You are here
Table of Contents > Investigate Top Alerts > Manage Top Alerts