Knowledge Base Community Release Notes Training Videos Request Demo

Tines Destination

Configuring Tines as an alert destination in your Panther Console

Overview

Destinations are integrations that receive alerts from rules, policies, system health notifications, and rule errors. Panther supports configuring Tines as the destination where you will receive alerts.

Sending Panther alerts to Tines means you can configure automated workflows in Tines that are initiated when a Panther alert is received.

How to set up Tines as an alert destination

To configure Tines as an alert destination in Panther, you'll need to create a Tines story, then use its webhook URL to configure a destination in Panther.

Step 1: Create a story in Tines

  1. Log in to your Tines Console.

  2. Follow the Tines documentation on how to to create a story.

    • For the Action type, select the Webhook Action.

    • Give the action a descriptive Name, like "Receive Panther Alerts."

  3. Copy the webhook URL. You will need it in the next step of this process.

Step 2: Configure the Tines alert destination in Panther

  1. Log in to the Panther Console.

  2. In the left sidebar, click Configure > Alert Destinations.

  3. Click +Add your first Destination.

    • If you have already created Destinations, click Create New in the upper right side of the page to add a new Destination.

  4. Click Tines (Webhook).

  5. Fill out the form to configure the Destination:

    • Display Name: Enter a descriptive name.

    • Tines Webhook URL: Enter the Tines webhook URL you generated in the previous step of this documentation.

    • Severity: Select the severity level of alerts to send to this Destination.

    • Alert Types: Select the alert types to send to this Destination.

    • Log Type: By default, we will send alerts from all log types. Specify log types here if you want to only send alerts from specific log types.

  6. Click Add Destination.

  7. On the final page, optionally click Send Test Alert to test the integration. When you are finished, click Finish Setup.

Additional Information on Destinations

For more information on alert routing order, modifying or deleting destinations, and workflow automation, please see the Panther docs: Destinations.

PreviousSplunk Destination (Beta)NextAssigning and Managing Alerts

Last updated