Submit a ticketCall us

Webinar: Web Help Desk for HR, Facilities and Accounting Departments
This webinar will focus on use cases for HR, Facilities and Accounting.

Having a unified ticketing and asset management system for all the departments in your company can provide end-users with a seamless experience and make things easier for your IT team. Yet, with different business tasks and objectives, many departments don’t fully understand the capabilities of Web Help Desk and how the software can be customized for effective use in their departments.
Register Now.

Home > Success Center > Log & Event Manager (LEM) > LEM All Threat Events filter conditions

LEM All Threat Events filter conditions

Table of contents

Updated June 5, 2017


This article provides the default conditions used for the All Threat Events filter under the Security section.


LEM 6.2.1 and later


Name: All Threat Events

(OR)1st group{

(AND)2nd group{Asset Scan Result Alerts.IsThreat == True}

(AND)3rd group{Auth Audit Alerts.IsThreat == True}

(AND)4th group{Auth Suspicious Alerts.IsThreat == True}

(AND)5th group{HostIncident.IsThreat == True}

(AND)6th group{HybridIncident.IsThreat == True}

(AND)7th group{Network Attack Alerts.IsThreat == True}

(AND)8th group{Network Audit Alerts.IsThreat == True}

(AND)9th group{NetowrkIncident.IsThreat == True}

(AND)10th group{Netowrk Suspicious Alerts.IsThreat == True}

(AND)11th group{Policy Access Alerts.IsThreat == True}

(AND)12th group{VirusAttack.IsThreat == True} }


See the Default LEM filters conditions on the Web Console Monitor page article for a full list of available default filters in LEM.


Last modified
07:18, 6 Jun 2017