Configuring Basic Alert Messages

  1. Go to the Endpoint Settings view > Alerts > Basic Alerts, and select a security violation.
  2. Select the applicable alert from the list.
  3. In the right section Alert Configuration:
    1. Select ON in the top line:

      The computer is restricted or about to the restricted

    2. Configure these settings:
      • Threshold Settings - Select how the amount of endpoints that trigger alerts are measured, by percentage or number.

      • Notification Settings - Select the notification type you receive when an alert is triggered:

        • Notify on alert activation - Sends a notification when an alert the number of Endpoint devices with violations exceeds the configured threshold.

        • Notify on alert resolution - Sends a notification when an alert the number of Endpoint devices with violations decreases below the configured threshold.

        • Remind me every - Sends a notification repeatedly according to a specified frequency, as long as the number of Endpoint devices with security violations exceeds the configured threshold.

        • Recipients - Enter the email addresses of the message recipients (separated by comma).

      • Email Template Settings - You can configure a unique email template to be sent to you when an alert is triggered. The email Subject and Body contain dynamic tags. Dynamic tags are replaced by the server with the relevant information during email sending. Remove the tags you do not wish to include in the email.

        • Attach report to mail notification - If selected, a CSV report with all the device details related to a particular alert will be attached to email. If there are no affected devices, nothing is attached

        • Subject - Contains these dynamic tags: type (alert activation, alert resolution or alert reminder), alert name, and tenant name.

        • Body - Contains these dynamic tags: type(alert activation, alert resolution or alert reminder), alert name, affected-count, and total-count.

        • Send Test Report - If selected, a notification email according to the configured template is sent for a particular alert.

        To send emails for alerts, you must follow the steps in the Configuring an E-mail Server section below.

  4. Click Save.
Note:

Alerts are reevaluated every 10 minutes.

When the alerting criteria are updated, the alerting is reevaluated on the next iteration.

When alerting is (re)enabled, it forces the alerting mechanism to immediately (re)start and (re)evaluate.