FAQ and Common Issues
Quick diagnosis and resolution for common user-facing problems.
Before you troubleshoot
Check these first:
- Are you logged in with the correct role?
- Is the API reachable at
http://localhost:8000? - Is the dashboard reachable at
http://localhost:3000? - Are required backend services healthy?
Login and access issues
Login fails with unauthorised error
Possible causes: wrong credentials, expired token or session, misconfigured environment values.
- Retry login and verify username and password.
- Log out and log in again to refresh the token.
- Ask an admin to verify your role and account status.
Cannot see pages other users can see
Possible cause: role-based permissions differ. Check Role-Based Access and request the required role from an admin.
Data and refresh issues
Dashboard cards do not update
Possible causes: API call failure, WebSocket disconnected, upstream service lag.
- Refresh the browser once.
- Confirm the API health endpoint responds.
- Confirm the alerts stream is receiving events.
Alerts appear duplicated
Possible cause: source systems sending near-identical events across channels. Check dedup hash fields in alert detail. Group by source and timestamp to verify true duplicates.
Investigation and response issues
Investigation stays pending too long
Possible causes: worker queue backlog, agent endpoint timeout, dependency degradation.
- Check worker and agent service health.
- Retry the investigation once backlog clears.
- Escalate to platform engineer if persistent.
Open the Agent Monitor (Agent Fleet page) to confirm the fleet is up. If the agent and MCP tool servers are not running, every agent shows "Unreachable" and the MCP domains show "down", as below. Investigations will sit pending until those services are back. Start the agent and MCP servers (or their containers), then retry.
