Questions and Answers
Which view in the INCIDENT tab provides a top-down view of the various types of incidents and impacted hosts?
Overview
Which category does an incident belong to if it is triggered by a rule related to network performance?
Performance
What information does an incident in FortiSIEM contain?
Time of the incident, source, target, and the triggering events
Which tab in FortiSIEM allows the user to search incidents and take actions?
Signup and view all the answers
By default, how often does the List view in FortiSIEM refresh?
Signup and view all the answers
Which menu in FortiSIEM provides a list of actions that can be taken on incidents?
Signup and view all the answers
What can be done using the Actions menu in FortiSIEM?
Signup and view all the answers
Study Notes
Incident Tab
- The Tree View in the INCIDENT tab provides a top-down view of the various types of incidents and impacted hosts.
Incident Categories
- Incidents triggered by rules related to network performance belong to the Network Performance category.
Incident Information
- An incident in FortiSIEM contains information about the incident, including details about the impacted hosts and the triggering event.
Incident Management
- The INCIDENT tab in FortiSIEM allows users to search incidents and take actions on them.
List View Refresh
- The List view in FortiSIEM refreshes every 1 minute by default.
Actions Menu
- The Actions menu in FortiSIEM provides a list of actions that can be taken on incidents, such as acknowledging, assigning, or closing incidents.
- Using the Actions menu, users can perform various actions on incidents, including acknowledging, assigning, or closing incidents, to manage and resolve incidents effectively.
Studying That Suits You
Use AI to generate personalized quizzes and flashcards to suit your learning preferences.
