| Table of Contents | ||||||
|---|---|---|---|---|---|---|
|
Purpose
The SecOps Alert description Lookup contains all the alerts and their definitions considered by the SecOps Security Operations and the Devo 360 AWSor Devo 360 for Palo Altoapplications. These applications use the alertPriority defined in this Lookup.
| Info |
|---|
Devo 360 Applications You need to must install this Lookup if you want to work with Devo 360 for AWS or , Devo 360 for Palo Alto applications or install any Mitre alerts pack. |
Open
SecOps Alert descriptionlookup
Once you have installed the lookup, you can use the Open button at the top right of the card in Exchange to access the Lookup Management area, it will be assigned to your role automatically. Click here to see how to assign it to other roleswhere you can apply filters to find it and later manage it as required. You can also access the Lookup in the following ways:
Go to Exchange in the navigation pane and look for the Lookup you want to open. Click Open.
Go to Data Search → Lookup Management. You will see a list with your Lookups available, including the ones that you download via Exchange. You can use the filter to open the Lookup you downloaded.
Working with Lookups
Refer to Manage and edit Lookup tables article to know how to work with LookupsManagement area via the Navigation pane (Data Search area → Lookup Management tab).
Use lookup
After installing the lookup, you can use it in the related applications mentioned above for their specific purposes. Apart from that, you can use it anywhere in the platform to enrich values when applicable. To do this, you must use the adequate syntax in queries to correlate values, as explained in this article.