Question & Answer
Question
What is the basis of the offense count shown against a rule in the QRadar® GUI's Offense tab?
Answer
In the Offense tab, the offense count that is displayed against a specific rule includes active and dormant offenses triggered by that rule. Inactive offenses associated with that rule are not included in that count.
For more information on offense states, please visit this documentation page.
[{"Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSBQAC","label":"IBM Security QRadar SIEM"},"ARM Category":[{"code":"a8m0z000000cwthAAA","label":"Offenses"},{"code":"a8m0z000000cwtrAAA","label":"Rules"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Version(s)"}]
Was this topic helpful?
Document Information
Modified date:
16 April 2021
UID
ibm16441303