Video Screencast Help

Search

Search results

I need a solution Hello all, I  want to understand the architecture of SSIM's from previous Administrator. We have  3 Collectors and 1 Corelator and 1 NAS Storage.   ...
Forum Discussion by Y@Du | 11 Jul 2014 | 0 comments
I need a solution Hi all, I have a doubt that for rules like internal port sweep where source ip is same and destination ip is different. So it will be better to select assigned ...
This issue has been solved
Forum Discussion by jefin | 20 May 2014 | 1 comment
I need a solution I created a rule that should update a lookup table. When creating the rule and releasing it on event data archive, it finds the information that i am looking for. ...
Forum Discussion by Dorbian | 08 May 2014 | 0 comments
I need a solution In visulazir when i checked table view many servers status shows "Clock out of sync", tried NTP server, but it already sync, unable to reolve the issue, ...
Forum Discussion by Y@Du | 25 Apr 2014 | 0 comments
I need a solution We have a custom collector with a rule that uses the option1 field, and after upgrading to 4.8 it is no longer triggering. It is my understanding that option1 through ...
Forum Discussion by ibutler | 20 Aug 2013 | 0 comments
With the additional functionality/integration between SSIM and GIN in 4.81, there’s an enhancement request we would like to make:   Periodically, we run into situations where we will max-out the resources of SSIM if we add large quantities of ...
Idea by Another IT Person | 10 Jun 2013 | 0 comments
I need a solution Hi! I´m kind of new using SSIM. I´m trying to create a rule that triggers and incident if somebody tries to log in any device at non working hours. Somebody ...
Forum Discussion by Rangie | 11 Apr 2013 | 2 comments
I need a solution We have several systems, which are primarily used by only one individual. We would like to be able to see if/when a "new" user logs in to that system. ...
Forum Discussion by mohpossum | 08 Feb 2013 | 5 comments
There should be a way to prioritize incidents without the asset being on asset table, for example if any machine was part of 2 or more incidents within a day then changing the severity to 5. (Security, Symantec Security Information Manager, ...
Idea by Vikram Kumar-SA... | 03 Feb 2013 | 0 comments
Would like to see more technology based generic rules in SSIM that would work regargless of any product used. Like Port Scans and Port Sweeps. BOT Rules needs to be modifed or more IRC ports added. Also if there can be addition on technology ...
Idea by Vikram Kumar-SA... | 03 Feb 2013 | 1 comment