Bulk alerting configuration

We are using the alerting functionality inside the Elastic Security toolset, and we have turned on about 100-odd rules. We have created email and webhook integrations and have started to tune the data being sent from these integrations to the rules...BUT
Do we REALLY have to configure a separate integration screen for every single one of the rules that we have turned on? Is there some way to streamline this process?


1 Like