0
votes
3
answers
43
views

What is best way to import a watchlist?

Been given a flat file of employee identifiers to be used as one of our watchlists; requirements are for new idenitifiers to be added to the watchlist on an ad-hoc basis. The watchlist will then be used from a policy to identify risky behavior by any members. What is best way to incorporate a file-b...
23 Oct, 00:07 tgulati ♦♦151
0
votes
2
answers
58
views

Configuration of arcsight preprocessor

I am trying to configure CEF formatted logs in 4.6. Even though i configured data source as Arcsight (CEF) device, in logs its showing me "ArcSight CEF? False" and arcsight pre-processor is not getting called. Is there any other file where we need to configure this in 4.6.
15 Oct, 14:20 anjan ♦♦111
0
votes
2
answers
33
views

How Do i avoid Broken Pipe Error in Securonix.log

How do you avoid Broken Pipe Exceptions which are logged in Securonix.log
15 Oct, 13:34 anjan ♦♦111
0
votes
1
answer
31
views

How does Securonix integrate with Sailpoint ?

How Does Securonix Integrate with Sailpoint ?
15 Oct, 10:30 mnair71
0
votes
1
answer
31
views

Receiving - LDAP NamingException error, Please check the configurations - while importing users.

While importing users, I created a connection type to the AD using LDAP connections. Following were my settings: Hostname ldap://ldap.abc.com:389 Base Context DC=cs,DC=myabc,DC=net Specify the DNS name prefexed with DC. Example: DC=Americas,DC=securonix,DC=com Filter (&(objectCategory=person)(ob...
13 Oct, 22:53 Aditya50
0
votes
1
answer
45
views

unknown host name exception while starting application

I am getting following exception while starting application. 15:44:41,540 WARN [CreateCacheUtil] Error obtaining local Ip java.net.UnknownHostException: labseconix701.int.asurion.lab: labseconix701.int.asurion.lab: Name or service not known at java.net.InetAddress.getLocalHost(InetAddress.java:1473...
08 Oct, 05:21 Praful ♦♦116
1
vote
1
answer
59
views

Clustering Procedure - Master Child Architecture

The following are the steps we followed for setting up Master-Child Architecture. First make sure you have the latest version of Profiler 4.6.8 Build:20140918 and up. After successfully installing the application on all the servers and right before you start up tomcat on the servers do the following...
07 Oct, 07:41 Aditya50
0
votes
1
answer
50
views

getting exception while running suspect check in 4.6

I am getting following exception while running "Account performing activity never conducted before and it flagged wrong user. org.apache.solr.client.solrj.SolrServerException: Server at http://localhost:8080/Profiler/trackingDistinctAccount sent back a redirect (302). at org.apache.solr.client.solr...
02 Oct, 16:41 Praful ♦♦116
0
votes
1
answer
42
views

How to download 4.6

Where can I download version 4.6?
30 Sep, 02:36 Praful ♦♦116
0
votes
1
answer
80
views

If we are importing Users by using ldap connection than how will verify the connection means which table use for configurations of Ldap?

If we are importing Users by using ldap connection than how will verify the connection means which table use for configurations of Ldap?
18 Sep, 01:29 Praful ♦♦116
0
votes
1
answer
63
views

evidence button on investigation workbench

When we go to the investigation Workbench and on the right hand side top right there is a evidence button to save evidence. Where does that evidence gets saved?
18 Sep, 01:26 Praful ♦♦116
0
votes
1
answer
64
views

Why are we using the Ad hoc reports?

Why are we using the Ad hoc reports?
18 Sep, 01:22 Praful ♦♦116
0
votes
1
answer
73
views

what is check of Would you like to Aggregate Risk Score on Each Run and why are we using it?

what is check of Would you like to Aggregate Risk Score on Each Run and why are we using it?
18 Sep, 01:21 Praful ♦♦116
0
votes
1
answer
102
views

What is Send output to,SIEM,CEF Output,Database Output,Syslog Output Checks in the Policy Violation Tab?

What is Send output to,SIEM,CEF Output,Database Output,Syslog Output Checks in the Policy Violation Tab?
18 Sep, 01:21 Praful ♦♦116
0
votes
1
answer
72
views

Why are we using investigation workbench? what is the use of it?

Why are we using investigation workbench? what is the use of it?
18 Sep, 01:19 Praful ♦♦116
0
votes
1
answer
67
views

How can we calculate the Risk Score?(if we want to remove it then what we need to do)

How can we calculate the Risk Score?(if we want to remove it then what we need to do)
18 Sep, 01:18 Praful ♦♦116
0
votes
1
answer
287
views

High memory utilization on Solaris 10

Anyone experiencing high memory utilization on Solaris 10 even though not many users are using the application?
16 Sep, 12:00 Praful ♦♦116
0
votes
1
answer
72
views

What is the way configure SLA configuration in Workflow?

What is the way configure SLA configuration in Workflow?
16 Sep, 02:03 Praful ♦♦116
0
votes
1
answer
71
views

How can we check correlation from database?

Suppose if my UI is not showing me right results than how can we validated correlation from Backend?
16 Sep, 02:00 Praful ♦♦116
0
votes
1
answer
117
views

Not able to schedule any job

I upgraded mysql from 5.0 to 5.6 and started application. After mysql upgrade I am not able to schedule any job. All jobs are getting created but none of the jobs are getting scheduled. While starting application I got following exception. 12:03:10,590 ERROR [QuartzSchedulerListener] Error in Quartz...
29 Aug, 15:42 Praful ♦♦116
0
votes
1
answer
140
views

Tom Cat Path not specified on Startup

I just recently installed Securonix and tried to start up the program by navigating to the program folder in the command prompt and then typing in the command "securonix.bat start". The output looks like the following. Calling start function... Starting MySQL Starting Tomcat The system can not find...
29 Aug, 15:22 Praful ♦♦116
0
votes
1
answer
73
views

None of the buttons on securonix main menu are clickable

I followed the complete upgrade process and upgraded my environment to latest 4.6 war file. But after starting application I am not able to click on any button. I am observing this on three different browsers. Chrome,Firefox and IE.
29 Aug, 15:17 Praful ♦♦116
0
votes
1
answer
95
views

MySQLNonTransientConnectionException: connection closed Error after long inactivity

ERROR [EventDBDumpThreadDaily] sqlException com.mysql.jdbc.exceptions.jdbc4.MySQLNonTransientConnectionException: No operations allowed after connection closed. ERROR [EventDBDumpThreadDaily] Error while transfering data to DB com.mysql.jdbc.exceptions.jdbc4.MySQLNonTransientConnectionException: No ...
26 Aug, 18:04 anjan ♦♦111
0
votes
1
answer
118
views

Weird error in securonix.log on application startup

The error below is seen in Securonix application log.Does not seem to impact anything. INFO: Server startup in 6749 ms Unable to use direct char[] access of java.lang.String java.lang.NoSuchFieldException: count at java.lang.Class.getDeclaredField(Class.java:1948)
01 Aug, 04:15 tgulati ♦♦151
0
votes
1
answer
131
views

How to import users from multiple Active Directory Domains?

I have 2 AD domains that I want to import users from. There may be some overlapping users between the 2 AD domains and I don't want any duplicates. Is this possible in Securonix?
23 Jul, 05:30 tgulati ♦♦151
0
votes
2
answers
586
views

How do I authenticate against the AD ?

How can i set up authentication for Securonix against the AD ? what are the files that are to be updated and the process followed
23 Jul, 03:34 tgulati ♦♦151
0
votes
1
answer
147
views

Auditing level best practice

Under Configure->Settings->Logging, the various modules each have eight levels of logging. The help provided under the ? is not the clearest in defining the various levels, but seems to say the order, from the most to least logging, is: All <- Trace <- Debug <- Info <- Warn <- E...
22 Jul, 01:01 tgulati ♦♦151
0
votes
0
answers
272
views

What are the most common installation problems encountered?

A partial list of things I've seen: 1. Java JDK not supported - Currently 1.7.0u51 works, however 1.7.0.55 fails. 2. Schema exists, but not all MySQL scripts complete( no data or upgrade file run) 3. JAVA_HOME variable not defined, or not set correctly 4. The password for the DB not specified/in...
28 May, 18:29 David Swift11
3
votes
5
answers
1.0k
views

Can someone round up the steps to install Securonix in a nutshell ?

Would love to collect everyones quick tips from the field to install securonix
28 May, 16:48 tgulati ♦♦151
0
votes
1
answer
312
views

How to archive data in Securonix?

How can I archive data in Securonix.
17 Apr, 14:41 Praful ♦♦116
posts per page153050