Documentation | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Viewing Incidents and Reports > Viewing the incident list > Managing incident workflow > Ignoring incidents
Ignoring incidents
Administrator Help | Forcepoint DLP | Version 8.7.x
Forcepoint recommends you mark an incident as ignored when you've reviewed it and no action is required. This makes it easier to see what requires your attention.
You can ignore files that are determined not to be violations and incidents (files or attachments) that are not malicious. You can then filter ignored incidents in or out of a report.
By default, the Forcepoint Security Manager does not display ignored incidents.
If you no longer want the incident to be ignored, you can unmark it.
To mark or unmark an incident as ignored:
1.
Select one or more incidents.
Note: If you want to apply the action to all the filtered incidents, skip this step and select the relevant option in a later step.
2.
From the toolbar, select Workflow > Ignore Incident.
3.
Select Mark as ignored incident or Unmark as ignored incident, as applicable.
4.
Select an option:
*
Select Selected incidents to mark or unmark only the incidents you selected in the list.
*
Select All filtered incidents to mark or unmark of all filtered incidents in the list.
5.
Click OK.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Viewing Incidents and Reports > Viewing the incident list > Managing incident workflow > Ignoring incidents
Copyright 2020 Forcepoint. All rights reserved.