Focus

Strata Cloud Manager

Incidents and Alerts: Log Viewer

Table of Contents

Incidents and Alerts: Log Viewer

View the log records that your devices have collected and stored in Cortex Data Lake.

Where Can I Use This?	What Do I Need?
`Strata Cloud Manager`	`AIOps for NGFW Free` or `AIOps for NGFW Premium` license `Cortex Data Lake` license A role that has permission to view the dashboard

Log Viewer

provides the capabilities of Explore — where you can view and interact with your logs stored in Cortex Data Lake.

Log Viewer

provides an audit trail for system, configuration, and network events. Jump from a dashboard to your logs to get details and investigate findings. A query field and time range preferences help you narrow down the specific logs that are of interest to you.

Learn more about how to build your queries

Discover new Log Viewer features in the Cortex Data Lake release notes.

Log Viewer

highlights actions and severity of the logs to help you understand how sessions are enforced. You can also view the details of the security artifacts of the logs in Search page.

* You can view details in Search for the following log types and log fields:

Log Type	Column Name
Traffic, Threat, URL, File	Source Address Destination Address NAT Source NAT Destination
Threat, File	File Hash
URL	URL URL Domain
DNS Security	Source Address Destination Address Domain FQDN

Incidents and Alerts: Prisma SD-WAN

Manage: NGFW and Prisma Access