Skip to content
QCecuring

Alerts & Schedules

Alerts & Schedules

Section titled “Alerts & Schedules”

The Alerts page manages alert rules that trigger on cryptographic risk events, and scan schedules that automate sensor execution.

hidden Alerts page showing active alert rules and scheduled scans

Alert Rules

Section titled “Alert Rules”

Alert rules define conditions that trigger notifications when new assets are discovered or existing assets change state.

Creating an Alert Rule

Section titled “Creating an Alert Rule”
  1. Navigate to AlertsCreate Rule
  2. Define the trigger condition
  3. Set notification method
  4. Activate the rule

Trigger Conditions

Section titled “Trigger Conditions”
ConditionDescription
Risk level thresholdAlert when assets at CRITICAL or HIGH risk are discovered
New asset discoveredAlert on any new crypto asset
Lifecycle state changeAlert when an asset moves to compromised/revoked
Certificate expiringAlert when certificates approach expiration
Policy violationAlert when new assets fail compliance evaluation

Example Rule

Section titled “Example Rule”
Name: Critical Risk Alert
Condition: quantumRiskLevel = CRITICAL
Action: Send email to admin@company.com

hidden Alert rule creation form with condition builder

Notifications

Section titled “Notifications”

When an alert triggers, notifications are sent via email (when SMTP is configured).

Email Configuration

Section titled “Email Configuration”

Email alerts require SMTP settings in the API environment:

Terminal window
CBOM_ALERT_EMAIL_ENABLED=true
CBOM_SMTP_HOST=smtp.gmail.com
CBOM_SMTP_PORT=587
CBOM_SMTP_USERNAME=alerts@company.com
CBOM_SMTP_PASSWORD=app-password
CBOM_ALERT_EMAIL_TO=security-team@company.com

Scan Schedules

Section titled “Scan Schedules”

Schedule automated sensor scans to run at regular intervals.

Creating a Schedule

Section titled “Creating a Schedule”
  1. Navigate to AlertsSchedules tab
  2. Click Create Schedule
  3. Select the sensor and scanner configuration
  4. Set the cron expression or interval
  5. Activate

Schedule Configuration

Section titled “Schedule Configuration”
FieldDescription
NameSchedule identifier
SensorWhich sensor to trigger
Scanner ConfigWhich scanner configuration to use
FrequencyCron expression or simple interval
EnabledActive/inactive toggle

Common Schedules

Section titled “Common Schedules”
# Nightly endpoint scan
Name: Nightly TLS Scan
Cron: 0 2 * * *
Scanner: https-endpoint


# Weekly full filesystem scan
Name: Weekly Filesystem Scan
Cron: 0 4 * * 0
Scanner: filesystem


# Hourly certificate expiry check
Name: Cert Expiry Monitor
Cron: 0 * * * *
Scanner: https-endpoint

hidden Schedule list showing configured automated scans

Alert History

Section titled “Alert History”

View past alert triggers:

  • When the alert fired
  • Which rule triggered
  • Which asset(s) caused it
  • Whether notification was sent successfully
Section titled “Related”
  • Sensors — Sensor management and manual scan triggers
  • Inventory — View assets that triggered alerts
  • Compliance — Policy violations that can trigger alerts
  • API Deployment — SMTP configuration for email alerts