Reporting Incidents to Email Addresses

Team: Huntress EDR
Product: Email Alerting
Environment: Huntress Dashboard
Summary: Huntress can report incidents and step-by-step remediation instructions directly to one or more specified email addresses.

A well-oiled managed security offering starts with centrally managed incident notifications. To help with this, we want Huntress remediation instructions to integrate into your existing workflow seamlessly, whether that's a PSA, SIEM, Ticket Tracking System, or an Email Distribution List. Since most solutions can natively accept email-based reports (SMTP), we created a generic Email integration. By configuring this integration, Huntress will automatically report an incident to one or more specified email addresses whenever the inevitable happens.

Setting up Email Address Integrations

1. Login to the Huntress Dashboard.
2. Hover over the Huntress options menu in the upper-right corner of the dashboard and select the "Integrations" option from the list.
3. Select the "Add" button to create a new integration.
4. Select the "Email" banner.
5. Select the "Emails" field.
   
6. Type in one or more email addresses and press the "ENTER" key after each email address. Multiple email addresses can be pasted into this field as long as each address is space or comma-separated. For example, foo@huntress.io, bar@huntress.io

If you would like to send MMS/SMS text alerts to cell phones, please see: Cell Phone Text Notifications

1. Select the "Add" button to save your integration.
2. Congratulations! Huntress can now directly report infections and remediation recommendations to the specified email addresses.