Analytics

This feature is currently available only to customers participating in our public preview. To access public preview features, see Public Preview Program.

Analytics on the platform empowers IT and security administrators to prevent, detect, and stop breaches by continually monitoring alerts across the organization to identify early signs of threats.

Permissions

These permissions are required to view and manage alerts on the Alerts page, as well as the Analytics Dashboard. Permissions are assigned to a role, then the role is assigned to a user. Refer to Roles and Permissions.

View Alerts - allows you to view all alerts on the Alerts page. From the dashboard, click the linked title in the Latest Alerts pane.

Update Alerts - allows you to mark false positives for alerts.

Manage Alerts - allows you to view the Risk Analysis page and the Risk Configuration page, where risk scores are managed and defined.

Identifying Alerts

Alerts identify any deviations from expected configuration or a baseline of your Delinea Platform tenant. The mechanism that identifies alerts runs continuously in your environment. Alerts help administrators and other staff members learn to recognize trends and better respond to security threats.

Based on the data available in activities like IP address and user agent, the platform can determine anomalous locations or user agents. By tracking those activities over time and correlating them with user historical data and actions, the platform can determine a baseline of user activity for their common locations, IP addresses, browsers used, and so on.

The data can also be used to identify authentication attack attempts like brute force and MFA bombing. While analytics generate alerts to highlight those findings each time something is detected, the end result is user risk. The risk assessment reflects the sensitivity of the account based on those findings.