Prisma Cloud: Non-Alertable Policy types

Prisma Cloud: Non-Alertable Policy types

733
Created On 07/30/24 18:02 PM - Last Modified 02/18/26 16:13 PM


Symptom


  • The following policy types are not standalone and cannot be added to alert rules:
    • APIĀ 
    • Grayware
    • Malware
    • Workload Incident
    • Workload Vulnerability

Environment


  • Prisma Cloud
  • Alert rules

Cause


These policies were designed to be utilized alongside the Attack Path policies.

Resolution


All policies except API, Grayware, Malware, Workload Incident, and Workload Vulnerability can be alerted, as these policies were designed to be utilized alongside the Attack Path policies. Since these policies are not configuration-based, they cannot be attached to alert rules. Other modules(NOT CSPM) attach the relevant findings to the asset.

Additional Information
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000010zKHCAY&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language