I have trouble to figure out why the columns in the Events panel are blank, while the ontology seems to map correctly at least the Name, StartTime, EndTime and CategoryOutcome.
In Cases, Overview, Events table, the columns are blank.
In the Events tab, Name is showing up.
When using "Configure Event", and looking at the related mapping, the system fields seem to be correctly mapped for Name, StartTime, EndTime and CategoryOutcome.
What am I missing?
Hey @Gooble ,
This is a know issue. I, personally, don't know the exact root cause, but there is a way to visualize this information in even better way.
Inside Google Chronicle integration, we have an action called "Get Detection Details". This action has a predefined widget that looks like this:
It allows you to see, filter, search events from the widget component.
Thanks @ylandovskyy for the tip.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.