ALERTS
      Back to home
      1. Knowledge Base
      2. MANAGEMENT: Manage your environment
      3. ALERTS

      🆕How to set up email alerts in cloud-hosted Safetica

      Learn to set up real-time email alerts based on Safetica Insights.

      For now, this article applies only to cloud-hosted Safetica.

      Information about alerts for Safetica hosted on-premises can be found here.

      In this article, you will learn more about:


       

      Introduction

      Cloud-hosted Safetica allows you to set up real-time email alerts based on Safetica Insights.

       

      Alert permissions

      For now, alerts are set up for the signed-in admin account.

      Permissions for alerts are as follows:

      • Receive alerts: Only Safetica admins with the User data permission can receive alerts from Safetica console. The permission can be enabled or disabled in Settings > Accounts and permissions.

      Alerts reflect the permissions the admin has (e.g., which users and teams they can view in the user tree). If the admin account’s access is limited only to e.g., the Development team, they will only receive alerts related to the Development team.

       

      How to set up email alerts for Safetica Insights

      You can choose which insights will trigger alerts based on their severity.

      To set up an email alert:

      1. In Safetica console, go to Alerts > Insights.
      2. Select the severity for which alerts should be sent (High severity insight, Medium or higher severity insight, or Low or higher severity insight).
      3. Click Save.

      Screenshot 2025-02-03 at 9.07.21

      When are the alerts sent

      Alerts will be sent when:

      • a new insight with the selected severity is created
      • when an existing insight reaches the selected severity

       

      How the alerts look like

      The email alerts look like this:

      Click View details in Safetica to be forwarded into the relevant section of Safetica console with active relevant filters.

       

       

      Legacy alerts

      In the past, cloud-hosted Safetica included two types of alerts:

      1. Risky operations: about high-risk, medium-risk, and low-risk operations.
      2. Policy actions: about every operation that was blocked by Safetica, about which the user was notified, or which the user overrode.

      These alerts are now marked as Legacy.

      Legacy Alert Behavior

      • If you already have these alerts configured, you can continue modifying their settings.
      • Once a legacy alert is set to Disabled, it becomes read-only and cannot be reactivated.
      • If you have never configured these alerts, they will not be available for setup.

      We recommend switching to insights-based alerts, since in the future, legacy alerts will be completely removed.