Skip to main content

User

Lacework generates user-based alerts when there are policy violations related to users. You can define alert rules to trigger alerts when policy violations related to users are found. See Alert Rules.

Alert List

The following table lists all the user-based alerts.

Alert NameAlert TypeEvent ModelAlert Subcategory
Suspicious user login detectedSuspiciousUserFailedLoginSystemRuleUser
Detect suspicious user loginsSuspiciousUserLoginMultiGEOsSystemRuleUser