Viewing Threat Intelligence (Indicator) Types

Scenarios

This section describes how to view indicator types.

Limitations and Constraints

• By default, built-in indicator types are associated with existing layouts. You cannot customize associated layouts.
• Built-in indicator types are enabled by default and cannot be edited, enabled, disabled, or deleted.

Viewing Threat Intelligence Types

1. Log in to the SecMaster console.
2. Click in the upper left corner of the management console and select a region or project.
3. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
4. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.
   Figure 1 Workspace management page
   

5. In the navigation pane on the left, choose Security Orchestration > Objects. On the displayed page, click the Type Management tab.
   Figure 2 Type Management page
   

6. On the Type Management page, click the Threat Intelligence tab.
7. On the Threat Intelligence page, view details. For details about the parameters, see Table 1.

   Table 1 Threat intelligence (indicator) type parameters

   Parameter	Description
   Type Name/Type Tag	Name and type tag of threat indicator
   Associated Layout	Layout associated with threat indicator
   Startup Status	Indicates the enabling status of a threat indicator type: Enabled: The current type has been enabled. Disabled: The current type has been disabled.
   Expired Time	Expiration time of threat indicator.
   Built-in	Indicates whether the indicator was built in the system.
   Description	Description of an indicator
   Operation	You can edit and delete the indicator.