I am trying to setup email alerts for threats as they are detected (Anti-virus, Anti-bot, etc.) and configured Automatic Reactions within SmartEvent R80.10. While I am able to get email alerting working, the email content provides no value as there the Attack Details is empty and having UserID information would be useful. Also, I don't see a way to create alerts according to various severity levels.
If anyone has any insight as to how best to configure/customize these alerts, it would be helpful.