Demo Incident Use-case

Sections

1. Fluency Event Watch Rule
2. Syslog Test Event
3. Behavior Alert
   1. Fluency
   2. PagerDuty
4. Resolution

Fluency Event Watch Rule

An Event Watch (behavior) rule is defined in Fluency.

Login to the Fluency Cloud portal: https://companyname.cloud.fluencysecurity.com. Open the main drop-down menu and choose the EventWatch Rules option under the EventWatch section.

Syslog Test Event

A test event is injected into the system.

Behavior Alert

Fluency

A New alert is generated in Fluency for the above event.

PagerDuty

An corresponding alert is sent to PagerDuty for the same incident.

Resolution

Resolving the Alert in PagerDuty provide a real-time update back to Fluency.

The alert now carries the Resolved status.

Page last updated: 2023 Aug 07 11:49:33 EDT