Log in to the Sentinel Web interface as a user with the Manage and View Security Intelligence Dashboards permission.
On the left side of the page, click> .
The Create Dashboard page opens in a new tab.
Use the following information to create the dashboard:
Name: Specify a unique name for the dashboard.
Classifier: Select the classifier that determines the categories displayed in the dashboard. The options are:
Filter: Specify a filter to determine the scope of events displayed in the dashboard, or select a predefined filter. By default it displays thefilter.
To search for an event field, specify the short name of the field, a colon, and the value. For example, notnull: xdastaxname displays all events. For more information, see Section 3.0, Configuring Filters.
Data retention period: Select how long the data for the dashboards is retained. The options are:
By default the Security Intelligence MongoDB database retains the data for 4 weeks.
The newly created empty dashboard is displayed because it has not had time to collect any data.
After few minutes, you can see the event data in the dashboard.
You can use a filter search query as a dashboard filter and create a dashboard. For more information on creating a dashboard by using a filter, see Section 2.4.5, Creating a Dashboard.