search
Knowledge BaseRelease NotesRequest Demo

PagerDuty Destination

Configuring PagerDuty as an alert destination in your Panther Console

hashtag
Overview

Destinations are integrations that receive alerts from rules, policies, system health notifications, and rule errors. Panther supports configuring PagerDuty as the destination where you will receive alerts.

PagerDutyarrow-up-right is a service to manage on-call rotations for critical systems. You can use the PagerDuty alert destination to page an on-call team. We typically only recommend this Destination for High and Critical severity issues that need to be addressed immediately.

hashtag
Video overview

hashtag
How to set up PagerDuty alert destinations in Panther

hashtag
Configure the integration in PagerDuty

  1. Log in to your PagerDuty account.

  2. Navigate to Services > Service Directory.

  3. Click +New Service.

  4. Fill out the forms to set up your new service, including a name and description. Select your escalation policy and noise reduction options as desired.

    • On the final Integrations form, select Events API V2.

    In the PagerDuty console, the Create a Service screen is shown. The Integrations form is shown, and the Events API v2 integration has been selected.

  5. You will be redirected to the Integrations page for that service. On this page, copy the Integration Key and store it in a secure location. You will need this in the next steps. In the PagerDuty console, the Integrations page is shown. There are "Integration Name" and "Integration Key" fields, with the latter highlighted.

circle-info

To ensure that you receive alerts from this integration, make sure you have assigned a user to be on-call in PagerDuty. For more information about setting on-call schedules, see PagerDuty's schedule basics documentationarrow-up-right

hashtag
Configure the PagerDuty alert destination in Panther

  1. Log in to the Panther Console.

  2. In the left sidebar, click Configure > Alert Destinations.

  3. Click +Add your first Destination.

    • If you have already created Destinations, click Create New in the upper right side of the page to add a new Destination.

  4. Click PagerDuty.

  5. Fill out the form to configure the Destination:

    • Display Name: Enter a descriptive name.

    • Integration Key: Enter the PagerDuty Integration Key you generated in the earlier steps of this documentation.

    • Severity: Select the severity level of alerts to send to this Destination.

    • Alert Types: Select the alert types to send to this Destination.

    • Log Type: By default, we will send alerts from all log types. Specify log types here if you want to only send alerts from specific log types. In the Panther Console, the "Configure your PagerDuty Destination" page is displayed. It contains fields for Display Name, Integration Key, Severity, Alert Types, and Log Types.

  6. Click Add Destination.

  7. On the final page, optionally click Send Test Alert to test the integration. When you are finished, click Finish Setup.

hashtag
Additional Information on Destinations

For more information on alert routing order, modifying or deleting destinations, and workflow automation, please see the Panther docs: Destinationsarrow-up-right.

PreviousOpsGenie DestinationNextRapid7 Destination

Last updated

Was this helpful?