cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
🔒 This topic is solved and locked. Need further help from the community? Please sign in and ask a new question.
chaudharydeepak
Obsidian | Level 7 chaudharydeepak
Obsidian | Level 7
Go to Solution

Delete of Domains in SAS Visual Investigator 10.6

Posted 07-08-2020 07:23 AM (1517 views)

Hi team,

 

I'm working SAS Visual Investigator 10.6. I want to know how I can delete domains from the SAS Visual Investigator.

 

Thanks.

0 Likes
1 ACCEPTED SOLUTION

Accepted Solutions
_austin_
SAS Employee _austin_
SAS Employee

Re: Delete of Domains in SAS Visual Investigator 10.6

Posted 07-08-2020 11:28 PM (1467 views)  |   In reply to chaudharydeepak

Hello,

Although the UI doesn't currently allow you to delete a domain, you can delete it from a REST call. You will have to delete any alerts associated with that domain first. The curl statement for the delete is shown below.

 

exec curl -I -X DELETE "http://$HOST:$PORT/svi-alert/domains/$DOMAIN_ID" \
  --header "Content-Type:application/json" \
  --header "Authorization: Bearer $TOKEN"
 

 

View solution in original post

0 Likes
5 REPLIES 5
_austin_
SAS Employee _austin_
SAS Employee

Re: Delete of Domains in SAS Visual Investigator 10.6

Posted 07-08-2020 11:28 PM (1468 views)  |   In reply to chaudharydeepak

Hello,

Although the UI doesn't currently allow you to delete a domain, you can delete it from a REST call. You will have to delete any alerts associated with that domain first. The curl statement for the delete is shown below.

 

exec curl -I -X DELETE "http://$HOST:$PORT/svi-alert/domains/$DOMAIN_ID" \
  --header "Content-Type:application/json" \
  --header "Authorization: Bearer $TOKEN"
 

 

0 Likes
shravanisreeyan
Fluorite | Level 6 shravanisreeyan
Fluorite | Level 6

Re: Delete of Domains in SAS Visual Investigator 10.6

Posted 09-16-2020 01:13 AM (1301 views)  |   In reply to _austin_
Hi, can please tell me Why do we use domain window in SAS Visual investigator?what is the use?
0 Likes
_austin_
SAS Employee _austin_
SAS Employee

Re: Delete of Domains in SAS Visual Investigator 10.6

Posted 09-16-2020 10:56 AM (1288 views)  |   In reply to shravanisreeyan

Are you asking "what are alert domains good for"?

If that is the question, I would explain it this way. Visual Investigator is meant to be an enterprise-level solution. So it may be used by multiple groups in a company for different reasons. For example, a domain can be used to represent a business unit, such as anti-money laundering or fraud. One of the principles of the alert framework is that we pull together all the suspicious activity for an "actionable entity" (the entity you need to investigate) into a single alert. But in a big system, different businesses could be investigating the same entity for different reasons. You probably don't want the fraud indicators triaged together with the money laundering activity or the insider threat activity. Each of those "alerting domains" are worked by different people, showing different information and behaving differently. For this reason, tagging your alerting event data by alert domain separates the alerts, guaranteeing that information from one source can be worked independently from information about another source. 

shravanisreeyan
Fluorite | Level 6 shravanisreeyan
Fluorite | Level 6

Re: Delete of Domains in SAS Visual Investigator 10.6

Posted 09-22-2020 08:40 AM (1245 views)  |   In reply to _austin_

Why do we create bridge table while creating relationships between entities ??On what basis we are creating?

 

0 Likes
SAS' 10th Year as a Category Leader

Chartis names SAS a leader in both Model Risk Governance and Model Validation

Read the Report

Discussion stats
  • 5 replies
  • ‎07-08-2020 07:23 AM
  • 1518 views
  • 1 like
  • 3 in conversation