Skip to main content
Affinity/Documentation
Español

Getting Started

  • What is Affinity
  • Sign In
  • Your First 15 Minutes
  • Navigation Map

Integrations (Admin)

  • Integration List
  • Create Integration
  • Start Ingestion
  • Secrets

Logs (Analyst)

  • Overview
  • SQL Queries
  • Search & Export
  • Analytics Mode
  • Share Queries
  • Create Rule from Logs

Alerts (Analyst)

  • List & Filters
  • Details & Management
  • Full View

Detection & Notifications (Admin)

  • Detection Rules
  • Notification Channels

Incident Response (Analyst)

  • Extract IOCs
  • Query IOCs in Logs
  • Export Results

Usage Analytics

  • Ingestion Metrics

Administration

  • User Management

Troubleshooting

  • Common Issues

Reference

  • Glossary
  • Integration Catalog
  • FAQ
  • Step-by-Step Guides

Alert Details (Side Panel)

Analyst10 min

What it's for

Manage status, owner, and resolution of an alert from the Alert Details panel.

Steps

  1. Open an alert with View Details.
  2. Review tabs `Formatted View` and `Raw JSON`.
  3. In Alert Management: change `Status` (`Open`, `Investigating`, `Resolved`, `False Positive`), `Owner`, `Resolved By`.
  4. Click Save Changes (shows Saving...).

Expected result

  • Alert updated with new status and assignments.

Tips

  • Other actions: Open Full View, Execute Query (opens Logs), Copy, Copy ID, Copy JSON, Export JSON, Delete Alert.

See also

  • Full View
  • SQL Queries
Previous

List & Filters

Next

Full View