Remediation Activity Log Fields
The descriptions and names of available log fields in a Prisma SaaS remediation log.
A remediation log is generated when an incident is manually remediated or if automatic remediation has been applied.
Time the remediation action occurred. Values are in
Serial number of the organization using the service (tenant).
The instance name of the cloud application (not the type of cloud application) associated with the remediation of the incident.
The policy violation or incident severity valued between 0 and 5.
The unique ID number for the incident. Can be null (no value).
The unique ID number for the asset associated with the remediation of the incident.
The name of the file, folder, or user associated with the remediation of the incident.
The user who owns the asset associated with the remediation.
The value is the
bucketnamefor AWS S3, Google Cloud Platform, and Microsoft Azure assets. The value is
nullfor the remaining applications.
The user who created the asset associated with the remediation.
The names of one or more policy rules (not policy type) that were matched.
Not currently implemented
The remediation action taken on Prisma SaaS. (
User Quarantine, or
Remove Public Links)
The user who performed the remediation. For automated remediation, the value is
Email address of the item owner.
Email address of the item creator.
Incidents Log Fields
The descriptions and names of available log fields in a Prisma SaaS incident log. ...
Log Events API
Learn about each example response and available response fields for log events retrieved by an API client for Prisma SaaS. ...
Assess New Incidents
Prisma SaaS compiles a summary of incidents for you to view, assess and address by further investigation or closure. ...
Building Blocks in Asset Rules
Building Blocks in Asset Rules An asset (or content) rule has the following information: Field Description Rule Name A name for the policy rule. Description ...
Policy Violation Log Fields
The descriptions and names of available log fields in a Prisma SaaS policy violation log. ...
Learn about the automatic remediation options available when an incident is discovered by Prisma SaaS. ...
Syslog Field Descriptions
Learn about the different log fields available for each log type on Prisma SaaS. ...
Configure Prisma Cloud to Automatically Remediate Alerts
To facilitate rapid incident response, you can configure Prisma Cloud to automatically remediate cloud security policy violations in your cloud environments using CLI commands. ...
Remediate Issues Palo Alto Networks® Prisma SaaS provides detailed information about the issues it detects as it scans the assets in your managed SaaS applications. ...