Steps to create and remove custom Alert Templates.
Note: This article is a "Best Effort" to provide the ability to create custom Templates. The methods described here are not officially supported. |
cd "C:\Program Files (x86)\Bit9\Parity Server\Reporter\"
ParityReporter add_template /name="Name of New Alert" /folder="C:\Temp\CustomAlert" /header="C:\Temp\CustomAlert\CustomHeader.hdr" /html="C:\Temp\CustomAlert\CustomBody.html" /text="C:\Temp\CustomAlert\CustomBody.txt"
cd "C:\Program Files (x86)\Bit9\Parity Server\Reporter\"
ParityReporter remove_template /name="Name of Alert"
Tag Name | Alert Type Tag Can Be Used With | Tag Value |
---|---|---|
{$server_name} | All Alerts | Computer name where Server is installed |
{$alert_id} | All Alerts | Alert identifier |
{$alerts_triggered_id} | All Alerts | Triggered alert instance identifier |
{$priority} | All Alerts | Priority of the Alert itself |
{$priority_color} | All Alerts | Alert priority color (for HTML) |
{$alert_type} | All Alerts | Alert type name |
{$alert_name} | All Alerts | Alert name |
{$alert_message} | All Alerts | Alert message |
{$created_by} | All Alerts | Date when alert was created |
{$triggered_date} | All Alerts | Date when alert was triggered |
{$triggered_summary} | All Alerts | Summary of triggered alert |
{$tagline} | All Alerts | Tagline used for branding purposes through database (shepherdConfigs param tagline) |
{$host_id} | Computer related alerts | Host database identifier (used optionally for host detail links) |
{$host_name} | Elevated privilege alert | Host name of computer that triggered the alert |
{$hash} | File related alerts | Hash of file that triggered the alert |
{$file_name} | File related alerts | File name of file that triggered the alert |
{$antibody_id} | File related alerts | File database identifier (used for file detail links) |
{$file_state} | File related alerts | File state of the file that triggered the alert |
{$cert_it} | Certificate alerts | Certificate id that triggered the alert |
{$cert_subject} | Certificate alerts | Certificate subject that triggered the alert |
{$publisher} | Certificate alerts | Certificate publisher that triggered the alert |
<Sha256> | Event and Approval Request alerts | SHA256 hash of the file that triggered the alert |
<Md5> | Event and Approval Request alerts | MD5 hash of the file that triggered the alert |
<Sha1> | Event and Approval Request alerts | SHA1 hash of the file that triggered the alert |
<FileName> | Event and Approval Request alerts | File name of the file that triggered the alert |
<HostName> | Event and Approval Request alerts | Host name of the computer which triggered the alert |
<UserName> | Event and Approval Request alerts | User name that triggered the alert |
<RootSha256> | Event and Approval Request alerts | SHA256 hash of the installer of the file that triggered the alert |
<AntibodyId> | Event and Approval Request alerts | Database identifier of the file that triggered the alert |
<HostId> | Event and Approval Request alerts | Database identifier of the computer that triggered the alert |
<EventRuleName> | Event alerts | Event rule that triggered the alert (if event rule is used) |
<EventRuleDescription> | Event alerts | Event rule description that triggered the alert (if event rule is used as criteria) |
<EventSubtype> | Event alerts | Event subtype that triggered the alert (if event is used as criteria) |
<EventDescription> | Event alerts | Event description that triggered the alert (if event is used as criteria) |
<ApprovalRequestPriority> | Approval Request alerts | Approval request priority as submitted by the user |
<ApprovalRequestReason> | Approval Request alerts | Approval request reason as submitted by the user |
{$approval_filename} | Approval Response | Approval response file name |
{$approval_resolution} | Approval Response | Approval response resolution as submitted by the administrator |
{$approval_response} | Approval Response | Approval response comments as submitted by the administrator |
{$approval_request_reason} | Approval Response | Approval request reason as submitted by the user |
{$approval_requestor} | Approval Response | Approval requester |
{$approval_request_date} | Approval Response | Approval request date |
{$indicator_id} | System health alerts | Health indicator id that triggered the alert |