# Setup Notification Triggers

CloudGuard WAF safeguards web servers against attacks. You can set up Trigger objects to specify actions when an event occurs. One type of Trigger object, "Notification", allows sending email notifications to multiple addresses for events related to your agents

## Setting up a Notification Trigger

#### Step 1: Create a new "Notification" trigger

Browse to **Policy -> Triggers** and create a new Trigger object of type **Notification**.

<div align="left"><figure><img src="/files/T506jTqfCGxbBQVrHuOB" alt=""><figcaption></figcaption></figure></div>

Configure a new name to the new trigger object:

![](/files/3egGGmwrl3csCFjzdVxn)

#### Step 2: Configure intervals and email addresses

1. **Intervals in hours** - Specify the interval in hours for receiving notifications. You will receive an email at each set interval (e.g., every 2 hours) if any events occurred.
2. **Emails recipients** - You can choose one of the following options:
   1. **Send all admins in the tenant** - According to the Admins listed under **Account** -> **Users**.
   2. **Send all users in the tenant** - According to the list of users listed under **Account** -> **Users**.
   3. **Custom Emails -** Send to a customize list of email addresses

<div align="left"><figure><img src="/files/YVeZHbrN2rld1lwLBfYu" alt=""><figcaption></figcaption></figure></div>

#### Step 3: Choose the Events you wish to get notified about

Select the checkboxes for events you want to be notified about. You can also choose all the events.

<figure><img src="/files/3SMeahqer8nGbkv7AH9P" alt=""><figcaption></figcaption></figure>

#### Step 3: Setup your Threat Prevention policy to use the new Log Trigger object/s

Browse to **Policy**->**Assets** and edit the asset you wish to modify.

Go to the **relevant practice** tab and scroll to the bottom.

![](/files/vLGra1Xzsy7E6mddjVVo)

Click on the 'Add triggers' lint and add your new Notification Trigger object.

{% hint style="warning" %}
The trigger must be connected to an asset, published, and enforced to be activated.
{% endhint %}

## Notification Email Example

The screenshot below illustrates a sample notification email that you will receive after configuring the notification trigger.

<figure><img src="/files/msbRZlL5lMTGOUSwgXOj" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://waf-doc.inext.checkpoint.com/setup-instructions/setup-notification-triggers.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.