List Alerts and Use Filter Options
List Alerts and Use Filter Options
Both Admins and Users can list Alerts. Ticket Orchestrator maintains a database of Alerts captured from configured plugins. Users can list the available Alerts, view Alerts metadata, and filter the Alerts.
- Go to Ticket Orchestrator > Alerts. The Alerts list shows all alerts matching any configured filter in the plugin configuration. The list is paginated with a default display of 10, but can be increased using the toggle in the bottom right of the page. The records are sorted in descending order of alert timestamp from most to least recent occurrence.
New fields will be added in Netskope Field that Cloud Exchange learns from the new alerts. The new fields generated from alerts will also be shown in notifications as well as in Netskope Cloud Exchange logs
- You can create a negative filter by selecting Not in the upper left hand corner.
- For more than one filter criteria, move the mouse to the upper right of the filter box to see and select the Add rule option. Then select the appropriate comparison operator And / Or by moving the mouse over the And button in the upper left, creating a multi-variable match as shown in the screenshot below. Individual rules can be deleted by clicking on the red trash icon to the right of the rule.
- For alternative multi-data criteria, select Add group. Rules will be processed from top to bottom. Move the mouse to the upper right of the filter box to see the Add group option.
- Click the Clear button to remove the custom filter; the UI will revert to the default filter and Alerts matching the default filter will be listed as the screen refreshes.
- After selecting the desired filter, click Apply Filter. Alerts matching the filtering criteria will be listed.
- Users can copy the filter string so it can be used as a filter query in the plugin configuration.
- Also users can enter the filter query manually and can load the filters according to the query.
- Expand row functionality in table by clicking on the down carrot to see more detail about individual alerts.
Admins can create business rules from the Alerts page when the filter is applied. A business rule based on the filtered query will be created when the File Plus icon is clicked.
