The Action Manager allows you to configure repeatable actions. There are several different types of actions that can be configured and then associated with a correlation rule deployment:
NOTE:Although all of these actions can be used in Correlation rule deployments, only the JavaScript actions can be used in other areas of the Sentinel Control Center. For more information, see Action Manager and Integrator.
Actions associated with a Correlation rule are executed when the deployed Correlation rule fires (with the frequency of the execution determined by settings on the Update Criteria window of the Correlation Rule Wizard).
If no action is specifically selected when deploying a correlation rule, a correlated event with the following default settings is created:
For trademark and copyright information, see Legal Notices.