Hello I am in need of some help. I have the info below. I am in need of a explination on where this is setup and where it can be manipulated. We are discovering events and getting much chatter. We changed it to just critical but we want to know what is critical i see the numbers but more specific than that etc. i hope this makes sense coudl really use the help
Rule severity Select the severity number from the following range of rule
severity numbers:
■ Info: Events with a severity of 0-19 contain information about
normal system operation.
■ Notice: Events with a severity of 20-39 contain information
about normal system operation.
■ Warning: Events with a severity of 40-59 indicate unexpected
activity or problems that have already been handled by
Symantec Critical System Protection.
■ Major: Events with a severity of 60-79 imply more impact
than Warning and less impact than Critical.
■ Critical: Events with a severity of 80-99 indicate activity or
problems that might require administrator intervention to
correct