About Optimizer

Astardzhiev · ‎12-09-2022

Hey @NPTEChrisSmith and @Optimizer , I believe Alert Table is not in the navigation bar, because Palo wants you to steer your focus on more important Incidents. Cortex XDR console will generate Incident for each alert with severity Medium, High and Critical. It will generate incident some Low severity alert, but not all of them. Incidents are simple containers, which will consolidate/aggregate all alert that are somehow related. So it should be more easy to focus on the Incidents and not overwhelm by avalanche of alerts Now that being said there are two easy way to navigate to Alert table without jumping around: - The easiest way would be to open URL https://<your-xdr-address>/alerts You can bookmark this URL and just click on your bookmark after you authenticate (if open the link after authentication, you will be redirected to the dashboard) - You can use the quick launcher and its "go to" search. Type "/alert" - / to enter go to search and "alert" for the string you want to search. You will see the results below, navigate with arrows and enter to select

Optimizer · ‎11-15-2022

Thank you, this helped a lot!

Member Since	‎11-03-2022 01:46 PM
Date Last Visited	‎12-07-2022 10:25 AM
Posts	4
Total Likes Received	1

Online Status	Offline
Date Last Visited	‎12-07-2022 10:25 AM

About Optimizer

Re: Cortex XDR Alerts

Re: File Integrity Monitoring FIM using Auditbeat module

Re: File Integrity Monitoring FIM using Auditbeat module

File Integrity Monitoring FIM using Auditbeat module

Re: Cortex XDR Alerts

Re: Cortex XDR Alerts

Re: Cortex XDR Alerts

Re: Cortex XDR Alerts

Re: Cortex XDR Alerts

Cortex XDR Exclusions vs Exceptions

Re: Cortex XDR Alerts

Re: File Integrity Monitoring FIM using Auditbeat module