Slide 1 of 4
When a critical alert is created, automatically send an email to yourself with details from the alert.
- Create a new workflow with a trigger designed to act on SentinelOne alerts:
- Create a filter to trigger on any alert with a severity of critical
- Review the alert data pulled through
- Insert the data into the email body and send it to yourself.
In this exercise, you will learn how to create a workflow that runs when critical alerts are raised and how to use the data that comes through the trigger..