Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • FortiDLP Console User Guide

    Home FortiDLP FortiDLP Console User Guide

    Resolving incidents

    Resolving incidents

    When you finish investigating an incident, you can resolve it to hide it by default in the Incidents module. This is a permanent action, and detections will no longer be added to it.

    The Incidents module lets you resolve incidents individually or in bulk, as follows.

    How to resolve a single incident
    1. In the FortiDLP Console, on the left-hand sidebar, click .
    2. Filter for the relevant incident by following the steps in Viewing incidents.
    3. Do one of the following:
      • To mark an incident as "Resolved" on the Incidents overview page:
        1. At the end of the incident's table row, click> Mark as Resolved.
      • To mark an incident as "Resolved" on the Incident details page:
        1. Select the incident's table row.
        2. On the top-right corner of the page, click Change status > Mark incident as Resolved.

    4. In the Resolve incident dialog box, do the following:
      1. Optionally, in the Reason field, type a reason for resolving the incident.
      2. Click Confirm.
    How to resolve multiple incidents
    1. In the FortiDLP Console, on the left-hand sidebar, click .
    2. Filter for the relevant incidents by following the steps in Viewing incidents.
    3. On the top-right corner of the page, click Change status > Mark [n] incidents as Resolved.
    4. In the Resolve [n] incidents dialog box, do the following:
      1. Optionally, in the Reason field, type a reason for resolving the incidents.
      2. Select the I confirm that I want to resolve [n] incidents checkbox.
      3. Click Confirm.
    Previous
    Next

    Resolving incidents

    Resolving incidents

    When you finish investigating an incident, you can resolve it to hide it by default in the Incidents module. This is a permanent action, and detections will no longer be added to it.

    The Incidents module lets you resolve incidents individually or in bulk, as follows.

    How to resolve a single incident
    1. In the FortiDLP Console, on the left-hand sidebar, click .
    2. Filter for the relevant incident by following the steps in Viewing incidents.
    3. Do one of the following:
      • To mark an incident as "Resolved" on the Incidents overview page:
        1. At the end of the incident's table row, click> Mark as Resolved.
      • To mark an incident as "Resolved" on the Incident details page:
        1. Select the incident's table row.
        2. On the top-right corner of the page, click Change status > Mark incident as Resolved.

    4. In the Resolve incident dialog box, do the following:
      1. Optionally, in the Reason field, type a reason for resolving the incident.
      2. Click Confirm.
    How to resolve multiple incidents
    1. In the FortiDLP Console, on the left-hand sidebar, click .
    2. Filter for the relevant incidents by following the steps in Viewing incidents.
    3. On the top-right corner of the page, click Change status > Mark [n] incidents as Resolved.
    4. In the Resolve [n] incidents dialog box, do the following:
      1. Optionally, in the Reason field, type a reason for resolving the incidents.
      2. Select the I confirm that I want to resolve [n] incidents checkbox.
      3. Click Confirm.
    Previous
    Next