Custom Rules

The user can configure additional rules for a resource.

1. Navigate to Inventory and select a resource e.g. load balancers.

2. Create a rule criteria in the text area and select Add Rule.

3. Enter content for the following entries and the number of finding meeting the rule criteria.

   • Name

   • Description

   • Severity

   • Default Action

   • Type

   • Account

4. Click Save.

The default action of the rule can be either info or alert. If a rule is configured with a default action of alert, then any new findings for the rule results in an alert notification from the Multicloud Defense Controller. The following configurations are required if you want a default action of alert.

• Configure Alert Profile to indicate if the user wants ServiceNow, PagerDuty, or Webhook notifications.

• Configure Alert Rule of type Discovery and sub-type Insights Rule with the level of severity specified.