Why not just level 3?

Question

Why not just level 3?

ciberesponce opened this issue 10 years ago · 1 comments

Level 3 gives you the warnings--level 2 will be very noisy. If you do level 2, it would require additional analytics after collection (i.e. at the WEC) to make use of them...

Thoughts?

Answer 1 · 2015-08-26T19:43:19.000Z

Are you talking about a specific subscription? In some cases we may collect extra events and then filter them more on the collection server.