Notifications

The Notifications page allows you to configure and manage incident email notifications when incidents escalate, or if incidents of specified threat levels occur for your account and accounts you manage. Email notifications regarding escalations also include notes the Alert Logic analyst provided in the Incidents page. You can also configure and manage notifications to keep you informed about the health of your account and the accounts you manage.

If your user account has the Administrator role, you can manage the notifications for users in your customer account and accounts you manage.

Manage Incident Console notifications

Configure notifications for threat levels if you want email alerts when Alert Logic creates an incident at the specified threat level. Set up notifications for escalations if you want email alerts any time the Alert Logic SOC escalates an incident. If you configure notifications for both escalations and threat levels, you may receive multiple email messages for the same incident.

You can set up a user account and designate it as "Notification Target Only," which means it exists only for email notifications. You can use this notification target to receive and store notifications for later review, or use a distribution list as the contact email so multiple people get the emails. For more information see Create a user account as a notification target.

To access the Notifications page in the Alert Logic console, click the Settings icon (), and then click Notifications.

My subscriptions

Select My Subscriptions, and then select Incidents to subscribe to email notifications when incidents of specified threat levels and escalations occur for your account and accounts. Notifications allow you to know about, and respond quickly to, threats in your environment.

To manage your notifications:

  1. In the Notifications panel, make any combination of the following choices:
    • Escalations—Click to specify the accounts for which you want notification of incident escalations. An incident escalation indicates that the Alert Logic Security Operations Center (SOC) sent an email to the designated contact for your account that the incident escalated.
    • Critical—Click to specify the accounts for which you want notification when an incident with a threat rating of Critical occurs for assets within the specified accounts.
    • High—Click to specify the accounts for which you want notification when an incident with a threat rating of High occurs for assets within the specified accounts.
    • Medium—Click to specify the accounts for which you want notification when incident with a threat rating of Medium occurs for assets within the specified accounts.
    • Low—Click to specify the accounts for which you want notification when incident with a threat rating of Low occurs for assets within the specified accounts.
    • Info—Click to specify the accounts for which you want notification when an incident with a threat rating of Info occurs for assets within the specified accounts.
  2. Click SAVE.

Manage Subscriptions of Others

You can manage the subscriptions of others only if your user account has one of the following roles:

  • Administrator
  • Owner
  • Power User
  • A power user can manage the subscriptions of others in their customer account. They cannot manage the subscriptions of others in managed accounts.

With the proper role, you can manage the notification settings of other users in your customer account and accounts you manage. Select Manage Subscriptions of Others, and then select Incidents to view, manage, and configure email notifications when incidents of specified threat levels and escalations occur for users in your account and users in accounts you manage.

Users maintain the ability to modify any changes an you make to their notifications.

Organize and group the user account list

By default, the Notifications panel lists user accounts alphabetically, and grouped by customer account. You can change the user account list order to specify whether Alert Logic groups user accounts by:

  • Customer account
  • Criticality (Threat level and escalations)
  • User account role

You can also use the search field to configure or manage the notifications for a specific user account.

Configure or modify notifications for other user accounts

Select a user account to set up email notifications when incidents of specified threat levels and escalations occur for the user's customer account and accounts that user manages.

To manage notifications for other user accounts:

  1. In the Notifications panel, make any combination of the following choices:
    • Escalations—Click to specify the accounts for which you want notification of incident escalations. An incident escalation indicates that the Alert Logic Security Operations Center (SOC) sent an email to the designated contact for your account that the incident escalated.
    • Critical—Click to specify the accounts for which you want notification when an incident with a threat rating of Critical occurs for assets within the specified accounts.
    • High—Click to specify the accounts for which you want notification when an incident with a threat rating of High occurs for assets within the specified accounts.
    • Medium—Click to specify the accounts for which you want notification when incident with a threat rating of Medium occurs for assets within the specified accounts.
    • Low—Click to specify the accounts for which you want notification when incident with a threat rating of Low occurs for assets within the specified accounts.
    • Info—Click to specify the accounts for which you want notification when an incident with a threat rating of Info occurs for assets within the specified accounts.
  2. Click SAVE.

Manage Health Center notifications

Use the notifications feature to set up email notifications of the Health Status of your account and accounts you manage. Notifications allow you to know about, and respond quickly to, negative health statuses in your environment.

Health notifications are based on the current state of your account at the time the email notification is sent, not a trending status over lapsed times between notifications.

My subscriptions

Select My Subscriptions, and then select Health to subscribe to regular email notifications about the health of your accounts and the accounts you manage.

To set up email notifications:

  1. From the Health Notifications page, click the Health Status bar.
  2. In the slideout panel, select Send me the Health Status for this account.
  3. In the drop-down menu, choose how frequently you want to receive notifications.
  4. Click SAVE.

Manage the subscriptions of others

You can manage the subscriptions of others only if your user account has one of the following roles:

  • Administrator
  • Owner
  • Power User
  • A power user can manage the subscriptions of others in their customer account. They cannot manage the subscriptions of others in managed accounts.

With the proper role, you can manage the notification settings of other users in your customer account and accounts you manage. Select Manage Subscriptions of Others to view, manage, and configure email notifications for any of the listed user accounts.

Users maintain the ability to modify any changes an you make to their notifications.