A couple questions around SCCP to Chronicle integration.
-One, is there a way to enrich data around GCP projects and resources labels?
-Two, SCCP sends a bunch of events/alerts for one resource. Does Chronicle automatically correlate these events or is there a way to do that?
Page 1 / 1
I can help with this part... "Does Chronicle automatically correlate these events or is there a way to do that?"
It doesn't automatically do it, but you can write rules to group and filter out alerts/events.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.