Home

Group By Option

Once you have your search results you may want to organize them further into logical groupings.

What are the steps?

Enter a search query on the Events tab and get your results. Then choose a group by option on the left side. You'll see the number of events per grouping. Click on any grouping to update the search query and view the matching events.

List of Options shown in the left pane on All Events tab.

Group events by various filters to get count of events

You can view the total count of events by Assets, Operating System, Monitoring Profile, Severity and Platform in the All Events tab. To view the count of FIM events by any of the filters, go to Events > All Events tab, select a date range  and select a filter from Group By drop-down.

Options in the Group By drop-down.

Did you Know?

You can also use group by options for Assets and Dashboard widgets.

Example of group by options on Assets tab. Enter a search query on the Assets tab and get your results. Then choose a group by option on the left side.

List of options shown in the left pane on Assets tab.

Example of a chart which is grouped by action.

Add Widget to Dashboard: Data in bar chart is grouped by Action.