am running an instance where am still experimenting with rules
am getting a lot of false alerts that i want to delete before push production
thanks
Thanks for reaching out, @Haitham1. Would using the bulk actions API work for you? Our documentation on managing alerts could also be helpful here.
1 Like
Hello @Haitham1
Alerts can be closed using API: Signals endpoint | Elastic Security Solution [8.15] | Elastic
Or through UI: Manage detection alerts | Elastic Security Solution [8.15] | Elastic
After closing, alerts won't appear in alerts table anymore
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.