Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Mark Anomalies as Resolved

  1. Last updated
  2. Save as PDF

Resolving threats and anomalies on a regular basis is an important part of training Threat Protection about baseline behavior in your environment. To get a better result, your organization should resolve threats and anomalies on a regular basis. If an anomaly is identified as a security violation or a valid anomaly requiring policy changes, it should be marked resolved after the event/investigation has concluded.

NOTE: Shadow Service anomalies cannot be resolved.

IMPORTANT: Resolving an anomaly cannot be undone or reverted.

To mark an anomaly as Resolved:

  1. Go to Incidents > Anomalies > Anomalies.
  2. In the Anomalies table, select the specific anomaly you wish to resolve.
  3. In the Anomalies Cloud Card, select Status as Resolved to remove the anomaly from the Anomalies list.
    clipboard_ee1259ac7c98da220549c11b4010e471d.png

Once updated, a successful message is displayed at the bottom of the page.

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Anomalies
    Sanctioned IT
    Article type
    Topic
    IT Type
    Sanctioned IT
  2. Tags
    1. Incidents
    2. threat protection