Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Cb Defense: Is there Any Limit to Policy Action Notifications?

Cb Defense: Is there Any Limit to Policy Action Notifications?

Environment

  • Cb Defense Web Console: All versions

Question

  • Is there Any Limit to Policy Action Notifications?

Answer

  • Yes, If you set up a notification to ONLY "Notify when""Policy action enforced", the notification will be sent out only ONCE for the same device, same hash, same rule in the same day.

Additional Notes

  • This suppression implementation helps to reduce the duplicated notifications sent out to customer's connector and email for same policy actions.
  • Under the Notification History fly out, the comment “Already sent notification for the same device, same hash, same rule in the same day” indicates the notification was not triggered due to notification suppression.
  • Please feel free to vote up to the request of a configurable notification for Policy Actions here

The notifications triggered by Alerts, or Alerts with TTPs, will NOT fall into this suppression.

Related Content

Cb Defense: How to Add New Notifications

Cb Defense: How to View Notifications History

Cb Defense: Sending Email Notifications to a Distribution List

Labels (1)
Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎05-09-2018
Views:
1004
Contributors