When a scan is in progress, you may want to know as soon as possible if certain things happen. For example, you may want to know when the scan finds a severe or critical vulnerability or if the scan stops unexpectedly. You can have the application alert you about scan events that are particularly important to you.
This feature is not a required part of the site configuration, but it's a convenient way to keep track of your scan when you don't have access to the Security Console Web interface or are simply not checking activity on the console.
Note: Alerts are sent in clear text and are not encrypted.
If you want to add an alert for an existing site, click that site's Edit icon in the Sites table on the Home page.
If you want to add an alert while creating a new site, click the Create site button on the Home page.
OR
Click the Create tab at the top of the page and then select Site from the drop-down list.
To set up alerts:
The New Alert form appears.
For example, if you select Paused and Resumed, an alert is generated every time the application pauses or resumes a scan.
Note: If a vulnerability can be verified, a “confirmed” vulnerability is reported. If the system is unable to verify a vulnerability known to be associated with that asset, it reports an “unconfirmed” or “potential” vulnerability. The difference between these latter two classifications is the level of probability. Unconfirmed vulnerabilities are more likely to exist than potential ones, based on the asset’s profile.
Creating an alert
Note: Alerts work best when they are targeted and setting multiple can feel overwhelming.