Help Center

Quick Start

File Auditing

Endpoint DLP

File Analysis

Data Risk Assessment

Cloud Protection

Administrative settings

General settings

About DataSecurity Plus

Release notes

Troubleshooting

Contact us

Alert

Follow the steps below to view or modify the default alerts:

  • Click the File Audit tab. Go to Configuration > Settings > Alert Configuration.
  • Choose any server, as the default configuration is the same for all servers configured.
  • You can now view the list of configured predefined alerts.
  • If required, you can choose to modify the predefined alerts using the Edit option.
  • Once you click on Edit, add or modify the alert details, including those under the Criteria section.
  • Click Save.

To create new alert profiles, follow the below steps:

  • Click the File Audit tab. Go to Configuration > Settings > Alert Configuration.
  • Click on + Add Alerts at the top right of the page.
  • Provide a suitable name and description for the new alert.
  • Classify the alert based on its severity.
  • If you want to configure a threshold-based alert, check the Threshold Limit checkbox.
  • To execute custom responses to any incident, provide a script file path.

    • Tip: Scripts are by far the most underrated response strategy. You can run scripts to shut down servers, stop user sessions, disable accounts, and much more. Do you want to request a custom response? Contact our support team.

  • To send email notifications to an administrative user, check the box next to Email Notifications, and click on Edit.
  • On the Email Settings popup, provide the email IDs to which the notifications are to be sent, the priority, subject, and alert message.
  • Set the maximum number of emails to be sent in the specified time. This will limit the number of emails that are to be sent for an alert. Click Save.
  • Choose the Criteria for the alert to be triggered. Click Save.

Instructions on how to write and use custom scripts in DataSecurity Plus

Choose your response to a triggered alert from the pre-defined scripts available or write your own.

Step 1: Add the script file path

Enter the command line needed to execute the scripts in the Script file path text box. Check the examples below for reference.

Example 1: "C:\users\example.exe"

Example 2: "C:\demo\disableuser.bat"

Example 3: powershell.exe - file "C:\users\administrator\test.ps1"

Example 4: wscript "C:\users\sample.vbs"

Step 2: Choose arguments from the drop-down

Choose additional event parameters to be passed as command line arguments.

Example: To disable a user who is deleting critical files.

Configure the settings using the below mentioned details.

Script file path : "C:\demo\disableuser.bat"

Arguments: Username

Don't see what you're looking for? Ask the Community

Ask a question
×
Thanks for your valuable feedback.

© 2020 Zoho Corporation Pvt. Ltd. All rights reserved.