Edit rules to modify the frequency at which alerts are generated, the criteria, and the alert recipients.
By default, built-in rules are enabled and configured to send alerts to all contacts with valid email addresses.
Only the criteria of Email Security rules can be modified.
The Built-in Rules screen appears.
The Edit Rule screen appears.
Check frequency: Select the frequency at which the rule criteria are checked
Alert frequency: Select the frequency at which the alert is generated when the rule criteria are met or exceeded
Shorter frequencies mean that the alert will be generated more often. Select longer frequencies to reduce the noise the alert generates.
System rules are configured to continuously check the rule criteria. Only the Alert frequency can be modified.
Security and custom rules are configured to immediately generate alerts if rule criteria are met or exceeded. Only the Check frequency can be modified.
Recipient watchlist: Type an email address and press ENTER to add the specified email address to the recipient watchlist.
Threshold: Specify the detection threshold.
Risk level: Select the risk level and then click Apply.
This setting can be used in combination with the additional recipients field.
The contact or account is added to the recipients.
Click Restore Defaults to restore this rule to its default values.