Manage Incidents

Table of Contents

Filter

Expand All | Collapse All

Next-Generation Firewall Docs

Getting Started
Administration
Version
- Cloud Management of NGFWs
- PAN-OS 10.0 (EoL)
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1 & Later
- PAN-OS 9.1
Networking
Version
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1 & Later
AIOps
Incidents & Alerts
Release Notes
Version
- Cloud Management and AIOps for NGFW
- PAN-OS 10.0 (EoL)
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1
- PAN-OS 11.2
- PAN-OS 8.1 (EoL)
- PAN-OS 9.0 (EoL)
- PAN-OS 9.1

Manage Incidents

Learn how to manage the AIOps for NGFW incidents.

Where Can I Use This?	What Do I Need?
`NGFW (Managed by Strata Cloud Manager)` `NGFW (Managed by PAN-OS or Panorama)` `VM-Series, funded with Software NGFW Credits`	`AIOps for NGFW Free (use the AIOps for NGFW Free app)` or `AIOps for NGFW Premium license (use the Strata Cloud Manager app)`

You can view the following data under All Incidents
:

Overview	Click Overview at top-right side to view an overview of all incidents across your network.
Incident Trend	The chart shows the active incidents in your deployment for the selected time period. Hover your cursor over the trend line to view the number of incidents raised and cleared at a specific point of time.
Total incidents	Total number of incidents categorized as Critical, Warning, and Informational.
Incidents by Status	View incidents according to their status. Click the number link to view the incidents corresponding to their status.
Incidents by Priority	View incidents according to their priority. Click the number link to view the incidents corresponding to their priority.
Most Recent Incidents	View your most recent incidents across your network sorted based on the priority. Click an incident to view details about it. You can also change the priority of an incident.
List View	Click List View at the top-right side to view a list of all incidents across your network. In this page, you can: Expand an incident to view its description and impact. Under Actions , you can perform the following actions: Assign an incident to yourself, that is, the current logged-in user only. Change Priority of an incident or select Not Set to remove the priority. Acknowledge an incident by selecting Yes , which confirms you have seen the alert. Suppress sets an incident to an Operational Status of "On Hold", when you don't plan on resolving it actively. Add Comment for an incident. Filter incidents according to date, severity, category, operational status, and priority.