This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

如何通过警报规则高级设置排除云账户

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

如何通过警报规则高级设置排除云账户

Wei_Zhang
L2 Linker

on ‎01-19-2023 06:12 PM

No ratings

目标

问题 - 用户正试图通过RQL排除调查页面上的一个云账户。当他试图在查询中添加 cloud.account != "XXX "时,他无法排除来自云账户的结果。

 

环境

Prisma Cloud

 

流程

配置扫描器会忽略cloud.account, cloud.accountgroup, cloud.region以及任何其他限制账户或区域的条件。这是因为那些应该由警报规则(Alert Rule)来配置。因此,要使自定义策略不产生云帐户,必须在警报规则中排除它。

 

要在警报规则中排除云账户,请通过 "高级设置"。这将为该警报规则的云资源触发警报添加更多的粒度:排除云账户 - 如果在选定的账户组中有一些云账户您不想触发警报,请从列表中选择这些账户。

1.png

 

其他信息

为运行时检查创建一个警报规则(Create an Alert Rule for Run-Time Checks)

Rate this article:
0 Likes Likes
  • 1855 Views
  • 0 comments
  • 0 Likes
Register or Sign-in
Contributors
Article Dashboard
Version history
Last Updated:
‎01-19-2023 06:12 PM
Updated by:
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks