Performing Actions on Threat Events

Right-Click Menu

You can right-click on any event and perform a number of different actions. For example:

 

View Active Protection details

 

(Active Protection events only) Opens the Active Protection Event Details dialog, which displays detailed information about the selected event(s).

Add to allowed items

(Threat scan events only) Enables you to add the selected threat(s) to the Allowed threats list maintained by one or more agent policies. An allowed threat is a threat that was detected on a previous scan, that you perceive to be benign or useful, and that should be allowed on the target machines. The change will take effect immediately for listening agents or at the next scheduled check-in interval.

Expand all

Expands all event trees. This can also be accomplished using the Threat Events > Expand All menu.

 

Collapse all

Collapses all Active Protection event trees in the top pane. This can also be accomplished using the Threat Events > Collapse All menu.

Export visible Active Protection events to CSV

Export information about the selected Active Protection events to a Comma Separated Values (CSV) file. The CSV file can then be used within a spreadsheet program. This can also be accomplished using the Threat Events > Export visible threat events to CSV menu.

Keyboard Shortcuts

The following keyboard shortcuts are available: