About Alerts

You can configure the Zscaler service to email specific individuals when certain events occur, so your organization can take action in a timely manner. See About Alert Subscriptions. You can create up to 128 alerts. You can create an alert for different types of events, such as when the service detects incoming or outgoing malware or when there is a policy violation. When you receive an alert, you can investigate it by going to Analytics and viewing logs of the event.

Events are grouped into classes. To see a list of events that can trigger alerts organized by class, see the table below.

Alert Classes

Depending on your organization's subscriptions, you can configure the service to send alerts for the following classes:

Class Event
Secure Alerts
  • Sandbox Adware
  • Sandbox Anonymizer
  • Sandbox Malware
  • Botnet Callback
  • Incoming and Outgoing Malware
  • Incoming and Outgoing Spyware
  • Incoming and Outgoing - Unscannable Files
  • Incoming and Outgoing Viruses
  • Malicious Content
  • Phishing
Access Control Alerts
  • URL Filtering Blocked Sites
  • Chat File Transfer
  • Social Network Post
  • Streaming Upload
  • Streaming View/Listen
  • Webmail File Attachment
System Alerts
  • Auth Bridge Down
  • LDAP Connection Down
  • LDAP Failure
  • LDAP Success
  • Policy Violation
Comply Alerts
  • Custom Engine Violation
  • GLBA violation
  • HIPAA Violation
  • PCI Violation
  1. Configure alerts. See How do I configure alerts?
  2. View a list of all configured alerts.
  3. Edit an alert. See How do I edit, delete, or duplicate items in the admin portal?
  4. Modify the table and its columns. See How do I use tables in the admin portal?
  5. Search for an alert.
  6. Click the Publish Alerts tab to specify email recipients for alerts. See About Alert Subscriptions.
  7. Click the Global Configuration tab to resend alerts. See How do I resend alerts?

Screenshot of Define Alerts page showing buttons and list used to manage and define alerts