Get Started with the Alert Logic Console

Alert Logic updated the appearance of the Alert Logic console, though all functionality remains. If you chose to use the beta navigation, note that the documentation below describes the current Alert Logic console. For more information about the new navigation, see Dashboard Navigation Menu.

The Alert Logic console provides a universal navigation experience for all Alert Logic customers, regardless of subscription level.

The Alert Logic console displays only the tabs and pages appropriate to your subscription level. This topic describes all possible tabs and pages, but specifies the subscriptions that generate the tabs and pages.

You can check the operational status of the Alert Logic console in the Service Status page. Alert Logic recommends that you subscribe to the Service Status page and all your components, including Alert Logic console. For more information about the Service Status page and how to subscribe, see Service Status.

Overview

The Overview tab in the Alert Logic console provides access to the Security Posture and Topology pages.

Security Posture

The Security Posture page provides an overview of the current state of your environment through three interactive dashboards that display your Threat Risk Index, and summaries of the incidents and remediations Alert Logic found within your deployments. Use the dashboards to analyze and address issues in your environment. For more information, see Security Posture Dashboard.

Topology

The Topology page displays an interactive diagram that uses color-coded icons to display the distribution of exposures and threats across your network assets. For more information, see Topology.

Incidents

The Incidents page displays information about:

  • Incidents generated from multiple sources, like Network IDS, Log Management, and Amazon GuardDuty
  • How to use that information to manage and close incidents
  • How to secure your environments

This page requires an Alert Logic Professional or an Alert Logic Enterprise Enterprise subscription. For more information about subscriptions and add-ons, see Alert Logic Subscriptions and Add-ons.

Remediations

The Remediations page displays the number and types of exposures in the protected deployment, and provides you with information about the exposure, including color-coded threat level, evidence, and recommendations to address the exposure.

The Remediations Summary and the Remediations List, under the Remediations tab in the Alert Logic console, provide you with the information you need to analyze and address issues in your environment.

The Search tab allows you to search for:

  • Log Messages—requires a Professional or an Enterprise subscription
  • Events—requires a Professional or an Enterprise subscription

Endpoint Protection

The Endpoint Protection tab provides access to Extended Endpoint Protection functionality, which helps you control threats and manage incidents from employee workstations, points of sale, servers, and more.

Reports

The Reports tab provides access to data related to exposures and incidents Alert Logic found within your deployments. Report data is cached and refreshed every 30 minutes. As a result, reports can take up to 30 minutes to reflect the latest data seen in the console.

Depending on your Alert Logic subscriptions, you will see some or all of the following report types:

  • Risk Reports—Provide convenient access to analysis, statistics, assessments, and trending data related to your security and health posture, threat risk index, and enterprise risks. Each report provides interactive filtering options, visual representations of the data, and informative tooltips. All subscriptions see this content.
  • Threats Reports—Provide convenient access to analysis, statistics, assessments, and trending data related to threats and incidents detected from your subscribed products and services. Each report provides interactive filtering options, visual representations of the data, and informative tooltips. This content requires a Professional or Enterprise subscription.
  • Vulnerabilities Reports—Provide convenient access to analysis, statistics, assessments, and trending data related to vulnerabilities discovered in your environment based on scanning outcomes. Each report provides interactive filtering options, visual representations of the data, and informative tooltips. All subscriptions see this content.
  • Remediations Reports—Provide convenient access to analysis, statistics, assessments, and trending data related to configuration issues and security exposures from your subscribed products and services. Each report provides interactive filtering options, visual representations of the data, and informative tooltips. All subscriptions see this content.
  • Compliance Reports—Provide convenient access to analysis, statistics, and trending data related to compliance assessment status and audit preparedness from your subscribed products and services. Each report provides interactive filtering options, visual representations of the data, and informative tooltips. All subscriptions see this content.
  • Service Reports—Provide convenient access to data related to entitlements, capability usage, users and security content for your subscribed products and services. Each report provides interactive filtering options, visual representations of the data, and informative tooltips. This content requires a Professional or Enterprise subscription.

Configuration

The Configuration tab provides access to pages where you configure Alert Logic product use. The Configuration tab provides access to:

  • Deployments for AWS, Azure, Google Cloud Platform, and Data Center protected environments. All subscriptions see this content.
  • Log Management policies and log collection schedules. This content requires a Professional or an Enterprise subscription.
  • Certificates & keys for your assets. This content requires a Professionalor an Enterprise subscription.
  • Alert Logic Managed Web Application Firewall (WAF). This content requires an Enterprise subscription or a Professional subscription with WAF purchased as an add-on.

Health

Ensure that your deployments are correctly configured from the Health tab, which provides this information:

  • Summary of your environment
  • Detailed health information regarding your networks, appliances, and agents with suggested configuration remediations
  • Option to subscribe to health summary alerts

Settings

Click the Settings icon () to access the Settings Menu. The menu includes: