For Network IPS appliances, revert to the default global protection domain for security events by grouping with the User Overridden option.
Navigating in the Network IPS Local Management Interface:
Navigating in the SiteProtector™ system: select the Security Events policy