0
votes
1
answer
40
views

how to update configuration of child node

I noticed time difference between imported activity and actual time of event. I have to change time zone of Child node. Can I do this from Master?
2 days ago mnair71
0
votes
1
answer
62
views

Control user sync process

How can I control sync process in Master? I would like to run sync user job only once in 3 hours.
2 days ago mnair71
0
votes
3
answers
411
views

How to archive data in Securonix?

How can I archive data in Securonix.
2 days ago mnair71
0
votes
0
answers
6
views

Uncorrelated User Account Status ="Suspended"

We imported access entitlements for various applications in GE Capital, but some apps have uncorrelated users whose Account Status = "Suspended." Other uncorrelated users in that same app have Account Status = "Active." What does this mean exactly, and how is Securonix pulling this information when ...
27 Feb, 12:28 aschilling8615
0
votes
2
answers
19
views

incremental import from DB

Hi, I’m trying to build an incremental upload for events on other data source I wrote the following query for the import in order to have only first 30 seconds – select * from cartis.CARDS_MESSAGES_RO4 where timestamp_peula > to_date('01-jan-2015 00:00:00', 'DD-MON-YYYY HH24:MI:SS') and timestamp...
26 Feb, 03:35 acohen15
0
votes
0
answers
38
views

users are not getting synced with child nodes

I configured master child architecture, But Users are not getting synced with child nodes? How can I debug this?
03 Feb, 02:45 Praful ♦♦126
0
votes
0
answers
43
views

Master Child architecture in Securonix.

How to configure Master Child architecture in Securonix?
03 Feb, 02:43 Praful ♦♦126
0
votes
2
answers
403
views

Upgrade Securonix

How to upgrade/update Securonix to the latest version. Our current version is 4.0b Build:20121102
02 Feb, 06:36 Praful ♦♦126
0
votes
1
answer
67
views

Can I install Securonix on a box running OpenJDK?

Hi, I have a of test box running on Ubuntu 12.04. I spent some time searching how to install Oracle’s JDK (as it is only available from a PPA). I'm just curious and I did not try it but, does Securonix support OpenJDK? Cheers,
01 Feb, 04:57 tgulati ♦♦186
0
votes
0
answers
50
views

What does the lock symbol do under "User Defined Policies"?

Some User Defined Policies have the lock symbol next to them, what is the purpose of the symbol and can they be locked?
07 Jan, 21:43 jmcnary15
0
votes
2
answers
112
views

Tracking identity enablement/disablement

In our identity feed, we have a flag indicating if userid is enabled or disabled. I want changes to this flag's state to affect the user table's dateenabled and datedisabled fields. I could do it via a scheduled SQL function on the server side, such as check flag status and if current state's time s...
24 Dec '14, 11:28 JasonBlue17
0
votes
1
answer
100
views

Procedure for handling temp or ._ files in war and tomcat directory

We see ._<filename> under various folders in tomcat directory and Profiler War directory. What is the recommended procedure to deal with these files. Should we delete them or do nothing
19 Dec '14, 18:06 anjan ♦♦111
0
votes
1
answer
528
views

How to run incremental behavior based outliers in 4.6.10?

Running the behavior based activity outliers has been made pretty simple in Securonix. Instead of choosing start date and end date, the first job itself can be run as incremental. In the start date option, choose the date from which you want to run the behavior outliers. Eg, choosing the start date ...
14 Dec '14, 22:47 Praful ♦♦126
0
votes
1
answer
132
views

Support for International Languages

How to enable support for Hebrew and Japanese language in Securonix.
06 Dec '14, 15:13 Praful ♦♦126
0
votes
1
answer
214
views

Bigram Comparator

How does Bigram comparator function under the Correlation rule compare data?
04 Dec '14, 20:17 tgulati ♦♦186
0
votes
1
answer
127
views

Why we have to use transactionstring1 for activity related info

Why we have to use transactionstring1 for activity related info
25 Nov '14, 22:08 Praful ♦♦126
0
votes
1
answer
135
views

Threat categories

How are the threat categories identified on the left hand side of the main page ?
20 Nov '14, 19:07 Praful ♦♦126
0
votes
1
answer
105
views

notifications

How are the mail notification configured on securonix?
20 Nov '14, 18:59 Praful ♦♦126
0
votes
1
answer
114
views

Incidents and its status

How are the case status decided for incidents?
20 Nov '14, 16:28 Praful ♦♦126
0
votes
1
answer
159
views

LDAP referral settings

What should the LDAP referral settings be. any recommendations?
20 Nov '14, 16:04 anjan ♦♦111
0
votes
1
answer
191
views

Enabling Data Clean Up Jobs - 4.6 (Housekeeping)

How do I create a data clean up job to delete old files (files older than 'x' days) on the server in 4.6?
14 Nov '14, 16:25 Aditya90
0
votes
1
answer
170
views

Experience with McAfee hDLP?

Initiating intelligence efforts are McAfee ePO's host DLP, initially for exfiltration and then expand to include deep-scans for various indicators. After review of data, planning to bring in DLP_EventView's ComputerName, FocusDisplay, EventRowID, EventTypeDisplayName, OriginalEvidenceListSize, Onlin...
14 Nov '14, 02:21 tgulati ♦♦186
0
votes
1
answer
7.8k
views

How can we convert the logs in to particular time zone from application in the Resources monitor activity?

How can we convert the logs in to particular time zone from application in the Resources monitor activity? like i have set EST Time ZONE in my application and EST time zone in my db if i want to convert particular resource groups logs in to UTC how i can achieve that? Sample Log Feed:- Oct 25 00:11:...
10 Nov '14, 15:26 Praful ♦♦126
0
votes
3
answers
596
views

Incremental import for MS SQL logs

I am trying to import logs from MS SQL Database incrementally. I have set the Increment field Name as "Date", Type as "Date" and format as "mm/dd/yyyy". But import is not happening incrementally. What is the condition field to be specified for incremental import.
09 Nov '14, 21:14 Praful ♦♦126
0
votes
1
answer
538
views

net.sf.jasperreports.engine.fill.JRExpressionEvalException while running report

11:35:30,495 ERROR JRFillSubreport:774 - Fill 1: exception net.sf.jasperreports.engine.fill.JRExpressionEvalException: Error evaluating expression : Source text : new java.lang.Integer(1) at net.sf.jasperreports.engine.fill.JREvaluator.evaluateEstimated(JREvaluator.java:308) at net.sf.jasperrepo...
07 Nov '14, 01:29 adhabale11
0
votes
1
answer
133
views

Enabling Third Party Intelligence based Policies

How do we create policies that uses third party intelligence data in Securonix 4.6 for activity logs based policy?
05 Nov '14, 11:46 Aditya90
0
votes
1
answer
133
views

How to move securonixwarm to another partition

Securonix's database partition is tight on space. Moving securonixwarm to another partition would address the issue.
05 Nov '14, 11:00 JasonBlue17
0
votes
1
answer
196
views

Can we customize menu in Securonix 4.6?

Can we customize menu in Securonix 4.6?
03 Nov '14, 00:46 Praful ♦♦126
0
votes
1
answer
975
views

New category is not getting displayed on dashboard

While creating a policy I create new Category. But that New category is not getting displayed on dashboard. I can see threats on threat dashboard.
03 Nov '14, 00:42 Praful ♦♦126
0
votes
2
answers
223
views

What are the steps to import ArcSight data in Profiler 4.6 ?

How do we configure and import ArcSight CEF data in 4.6?
03 Nov '14, 00:31 Praful ♦♦126
posts per page153050