Aggregate alerts into a single ticket
C
Chris Sanchez
I would like to have the ability to receive alerts from multiple endpoints within an environment as a single alert. For instance, if five endpoints trigger an alert based on a specific metric, it would be beneficial to generate only one ticket that notes all the devices that triggered the alert. This would streamline the alert management process and reduce the number of tickets generated.
A
Abriyanna Turner
Merged in a post:
Add ability to consolidate same data point in inspector from multiple devices in same environment
J
James Barr
Currently if you want to generate alerts/tickets for a common data point that has to be gathered from a bunch of different devices from the same inspector (example: BitLocker status from the Windows Workstation inspector), you cannot consolidate these into one alert/ticket on the Liongard side; so, if one client environment has 125 workstations without BitLocker enabled, that would result in 125 tickets spinning up on the PSA.
It would be great if we could consolidate the list of devices matching specific criteria from the same inspector on the Liongard side, but from numerous devices in the same environment, to generate alerts/tickets with. The end result would preferably be a single ticket in the PSA created by Liongard that would list all 125 device names with their BitLocker statuses, in this example. This would be tremendously useful for myriad other data points and inspectors as well. It's irrelevant for inspectors that gather information about a bunch of users or devices from one inspector, such as Microsoft 365, but for inspectors that are "per device" it would be great.