Cloud SOAR Menus
This article describes the menus and navigation options for Cloud SOAR.
Classic UI
The classic UI is the traditional way to navigate in Sumo Logic. For more information, see Tour the Sumo Logic Classic UI.
Top menu
This menu appears at the top of the Cloud SOAR screen:
Use the top menu to access:
- Incidents. Manage security incidents that require investigation and action.
- Entities. Manage entities identified across incidents.
Support. Access help, including documentation and support contact information.
Settings. Configure Cloud SOAR settings.
Settings menu
The Settings menu allows you to configure Cloud SOAR settings. To access the menu, click on the top menu.
Use the Settings menu to access:
- Automation. Configure Cloud SOAR's automation and orchestration features.
- Settings. Configure Cloud SOAR settings.
- Report. Configure reports.
New UI
The new UI provides a streamlined way to navigate in Sumo Logic. For more information, see Tour the Sumo Logic UI.
Cloud SOAR sidebar menu
Click Cloud SOAR in the main Sumo Logic menu to open the sidebar menu.
Use the Cloud SOAR sidebar menu to access:
- SecOps & Dashboard. Open the home screen of Cloud SOAR.
- Incidents. Manage security incidents that require investigation and action.
- Triage. Triage events which may be unverified or have a low confidence level before they are converted to incidents.
- Entities. Manage entities identified across incidents.
- Report. Configure reports.
Automation sidebar menu
Click Automation in the main Sumo Logic menu to open the sidebar menu.
Use the Automation sidebar menu to access:
- App Central. Add new integrations and playbooks to your environment.
- Playbooks. Create playbooks to run automated actions.
- Template. Create incident templates.
- Integrations. Manage integrations with vendors.
- Rules. Create automation rules.
- Bridge. Configure a bridge to run custom actions or integrations.
Top menu
This menu appears at the top of the screen:
Use the top menu to access:
Go To... Launch Sumo Logic features, including for Cloud SOAR.
Help. Access links to documentation, support, community, release notes, and system status.
Configuration. Configure Sumo Logic features, including for Cloud SOAR.
Administration. Administer Sumo Logic features, including for Cloud SOAR.
Profile. View your notification and preference settings.
Go To... menu
The Go To... menu allows you to launch Sumo Logic features, including for Cloud SOAR. To access this menu, click on the top menu.
Use the Go To... menu to access these Cloud SOAR features:
- Bridge. Configure a bridge to run custom actions or integrations.
- Entities. Manage entities identified across incidents.
- Fields. Customize fields to better suit your environment.
- General. Configure general Cloud SOAR settings.
- Groups. Create a group of users that can be added as incident investigators.
- Incidents. Manage security incidents that require investigation and action.
- Incident Labels. Define labels for the different types of incidents that will be investigated.
- Notifications. Configure notifications to Cloud SOAR users as well as other external users.
- Report. Configure reports.
- SecOps & Dashboard. Open the home screen of Cloud SOAR.
- Triage. Triage events which may be unverified or have a low confidence level before they are converted to incidents.
Configuration menu
The Configuration menu allows you to configure Sumo Logic features, including for Cloud SOAR. To access this menu, click on the top menu. Scroll down the menu to see Cloud SOAR configuration options.
Use the Configuration menu to access:
- Incidents. Manage security incidents that require investigation and action.
- Fields. Customize fields to better suit your environment.
- Incident Labels. Define labels for the different types of incidents that will be investigated.
Administration menu
The Administration menu allows you to administer Sumo Logic features, such as for account, users and roles, and account security. You can also administer Cloud SOAR features. To access this menu, click on the top menu. Scroll down the menu to see Cloud SOAR administration options.
Use the Administration menu to access:
- General. Configure general Cloud SOAR settings.
- Notifications. Configure notifications to Cloud SOAR users as well as other external users.
- Groups. Create a group of users that can be added as incident investigators.