Posture Control (ZPC)
Ignoring or Resolving Alerts
ZPC triggers alerts for any security policy violations or misconfigurations that are detected in your cloud resources. Sometimes, you might want to ignore or resolve a few alerts that are not critical and instead focus on high-priority alerts. You can also configure alert filters to ignore specific alerts that are not critical. To learn more, see Adding Ignore Filters.
Ignoring an Alert
To ignore a single alert or multiple alerts:
- On the Alerts page, click the Cloud Alerts or IaC Alerts tab, as required.
- Click the All Alerts List tab.
- You can choose to ignore alerts from various locations in the Zscaler Posture Control (ZPC) Admin Portal:
- Alerts page
- Select the checkbox for an alert. You can also select and ignore multiple alerts. From the Actions menu that appears, select Ignore.
- Alerts drawer
), then select Ignore.
- In the Ignore Alert window, enter the reason and select the duration for ignoring the alert.
- Click Ignore.
The alert is ignored, but whenever ZPC detects a security policy violation, it triggers the alert. However, the alert notification is not sent to third-party tools.
Resolving Alerts
To resolve a single alert or multiple alerts:
- On the Alerts page, click the Cloud Alerts or IaC Alerts tab, as required.
- Click the All Alerts List tab.
- You can choose to resolve alerts from various locations in the ZPC Admin Portal:
- Alerts page
- Select the checkbox for an alert. You can also select and resolve multiple alerts. From the Actions menu that appears, select Resolve.
- Alerts drawer
- Alerts page
- In the Resolve Alert window, enter the reason for resolving the alert.
- Click Resolve.
The alerts are resolved and the alert status changes to Resolved on the Alerts page.