- Get Started with Threat Center
- Group Detections
- Work on Cases
- Triage Alerts in Threat Center
- Edit and Collaborate in Threat Center
- Find Cases or Alerts
- Build a Search in Threat Center
- Enter a Search Using Exabeam Query Language in Threat Center
- Enter a Search Using Natural Language in Threat Center
- Run a Recent Search in Threat Center
- Create a New Saved Search in Threat Center
- Run a Saved Search in Threat Center
- Edit a Saved Search in Threat Center
- Delete a Saved Search in Threat Center
- Sort Cases or Alerts
- View Case and Alert Metrics
- Get Notified About Threat Center
PrevNext
Close Cases
When work has finished on cases, change the case stage to closed.
You can only close a case whose case stage is not already Closed.
On the Cases tab, select cases to close:
To close all cases shown, click the checkbox in the header row, then click Close.
To close multiple cases, click the checkbox for the cases you're closing, then click Close.
To close a single case:
Click the checkbox for a case, then click Close.
Select the case, then in the case attribute summary, select the case stage, then select Close.
In Type a reason, enter the reason why you're closing the case.
Click Close.