2.7 Event Visualizations

Sentinel provides event visualizations that present data in charts, tables, and maps. These visualizations make it easier to visualize and analyze large volumes of events including IP Flow events. You can also create your own visualizations and dashboards.

Event visualizations are available by default in Sentinel with scalable storage. In a traditional storage set up, event visualizations are available only if you enabled visualization data store (Elasticsearch) to store and index data. For more information about enabling Elasticsearch, see Configuring the Visualization Data Store.