Skip to main content
Skip table of contents

Create a Policy from Search Results

  1. In the Raw Message column, right-click on the raw log message you want to use to create a policy, and then click Create Policy.
    If the log message has no associated log source type, the Assign Log Source Type dialog box appears.

    If the log message is already associated to a log source type, the first page of the Policy Builder appears. Go to step 3.
  2. Select a log source type from the existing list. 
    A blue frame appears around the selected log source type, and the Log Source Type Details appear on the right side.

    If you want to create a new log source type, click Create New Log Source Type. For more information, see Create a Log Source Type.

  3. Click Create Policies.
    The first page of the Policy Builder appears.
  4. Enter information in the following fields:

    • Policy Name. A name for the policy.

    • (Optional) Policy Description. A description of the policy.

    • Paste a Log Message Here. The raw log message you selected from the search results auto-populates.

  5. Click Next.
    The Policy Builder Workspace appears.

For more information on the Policy Builder:

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.