The default view groups Alerts into Incidents — collections of alerts that have been correlated together.
Clicking on an incident will expand into a list of alerts.
You can use substring matches to limit and filter results.
Or match on the underlying API data via SQL operations.
(Read more about this feature by clicking on the “Learn about filters” link in the filter bar.)
To clear out multiple alerts at once, you can check the alert or incident and click “Resolve”.
To resolve all alerts under the current filter at once, you can select “All” alerts in the top-level checkbox dropdown. Then click “Resolve”.
You will be prompted to confirm before continuing.
Clicking on a single alert will lead to an alert details page for that alert (incidents themselves currently do not have a separate breakout page).
Comments
0 comments
Please sign in to leave a comment.