ICA "Other Policies Violated" Section Not Correlating to the User Selected
Updated On:28-08-2019 10:01
Information Centric Analytics
The "Other Policies Violated" section does not seem to be correlating to the user selected
Steps to Reproduce:
PreReq: Find a USER1 that has violated more than one policy.(Where they have other policies violated.)
1. Search the incident
2. Scroll down to "Other Policies Violated by Message" section... (You should see at least one other incident referenced here of a policy USER1 violated.)
3. RightClick on Incident - New Tab - Risk Fabric will open to a BLANK page. (Requiring ANALYST to re-enter incident number into SpotLight search.)
Results: Once you pull up the incident, you'll see that the incident brought you to a USER2 incident, not USER1..... The USER2 incident has no correlation to USER1.
Conclusion: "Other Policies Violated by Message" section is not accurrately listing valid incidents associated with source user/USER1.