Add affected users to existing cases

You can add affected users to one or more existing cases. After the user records have been added to cases, you can use Security Case Management to analyze the data.

Before you begin

The Threat Intelligence plugin must be activated to use Security Case Management.

Role required: sn_ti.case_user_write

Procedure

  1. Navigate to the user records you want to add to existing cases. For example, you can navigate to User Administration > Users..
    The list of user records opens.
  2. In the list, select one or more users that you want to add to existing cases.
    Note: If you select multiple users, the selected user records are added to each of the selected cases.
  3. From the Actions on selected items drop-down list, select Add to Security Case.
    The Add to Security Case dialog box opens and displays the cases assigned to you.
    Add uses to existing cases
  4. Select the cases into which you want to add the selected users.
  5. Click Add.
    A message indicates that the selected records have been added to the cases, along with a link to the cases in Security Case Management.