Guardrail Activity Detailed View

Overview

Guardrail Activity gives you a consolidated view of all security events detected by Akto’s Agentic Guardrails. You can review, investigate, and take action on guardrail violations raised by rule-based detection and anomaly detection mechanisms.

Navigate to Guardrail Activity

Follow these steps to access Guardrail Activity:

1. Log in to your Akto account.

2. Switch to the Agentic Security product.

3. From the left navigation bar, click Agentic Guardrails.

4. Select Guardrail Activity.

5. Scroll down to view the activity list, categorized as:

   • Active

   • Under Review

   • Ignored

6. Click any activity to open its detailed drilldown view.

Detailed View

The detailed view provides complete context required for investigation and remediation. The page displays severity along with all relevant metadata and is organised into three tabs:

Overview

Timeline

Values

Presents the description, details, and impact of the activity, giving you a clear understanding of the activity.

Update the Status

Use Event Actions option to update the status of an activity:

• Mark for Review – Move the activity into the review workflow.

• Ignore – Remove the activity from the active threat list.

  

Block the Traffic From the Source IP

Use Block IP button to immediately stop further activity from the malicious source.

For more details, continue to the Block an IP from Guardrail Activity Page.

Create Internal Workflow Item

You can create a Jira ticket or a Work Item directly from the threat activity view to support internal tracking, ticketing, and coordinated remediation.

To learn more about creating and configuring these items, head to the Create Internal Workflow Item.