-
Votes
13
Need Collector Plugin for Splunk
Hi, I have an issues when Splunk SIEM forwards the logs towards Sentinel Collector. I received the logs coming from 1 node which have multiple logs per devices(Palo Alto ...
Comments (1) | by: Syahir A. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
11
Need Collector Plugin for Event Source from SentinelOne product
Hi, I have forwarded log from SentinelOne device via syslog message. The problem is, the Event Source naming display incorrectly then it should be. It produces multiple ...
Comments (1) | by: Muhamad Basyir M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Supported Platforms
-
Votes
2
support pure-ftpd access log
I hope to be able to target pure-ftp log to parsing, because many of my customers use novell ftp to access nss volume, and novell ftp uses pure-ftpd service, so audit ...
Comments (1) | by: johnson y. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
1
Solution Designer - Bulk Copy
Need a method to capture all custom content in single click. Currently have to copy one item at a time. Group by group. Very time consuming. Option A: Ctrl/Shift+Left ...
Comments (1) | by: Bryan W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
0
iXia ThreatARMOR
Dear, Do we have plan to release the collector plug-in to support iXia ThreatARMOR? We would like to request this because iXia ThreatARMOR is most popular device in the ...
Comments (0) | by: Jack L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
1
Proxy Setting in Sentinel
There is no "offical" proxy setting in Sentinel. There should be a configuration option in the GUI to setup Sentinel to use a Proxy also with user/password and this ...
Comments (0) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
syslog connector to route events based on CEF Vendor Product
Add an an additional “CEFVendorProduct” Package Policy, which works just like “Application ID” but uses the two CEF header fields for routing decision. The precedence of ...
Comments (0) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
3
RedHat 8
Hi, RedHat 8 is published and many vendors and companies are planning to jump from RHEL6 to RHEL8. Is there any plans to make Sentinel8 RHEL8 compatible? -Br, TimoS
Comments (0) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Supported Platforms
-
Votes
3
Configuring Sentinel Web Console Settings From Red Hat/RestAPI
Please provide the means to automate or configure the following Sentinel Web Console settings via Red Hat or RestAPI: -Secondary Storage location -Primary Storage ...
Comments (0) | by: Nicholas V. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
1
Central Computer Temporary Storage Max
Increase maximum from 500 MB (500000 KB) to something much larger
Comments (0) | by: Bryan W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
CheckPoint R80.xx: LogExporter Collector is needed
CheckPoint has migrated from LEA-protocol to LogExporter (syslog) to integrate with SIEM products. At the same time the log event format has changed. Therefore a new ...
Comments (0) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
3
MSG Field size to 16kB
The message field size should be bigger. Some of custom log event sources require bigger msg size.
Comments (0) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
1
Integrate the 9443 console certificate mechanism of the Sentinel 8.2.0 ...
Appliances created with SUSE studio have a security certificate mechanism integrated into the port 9443 administration console. This mechanism greatly simplifies the ...
Comments (0) | by: Grant G. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
3
Better LDAP integration
Currently the LDAP integration is extremely basic. It requires far too much work to get it to work with an LDAP load balancer. The best LDAP integrations automatically ...
Comments (0) | by: Rob M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
2
Sentinel 8.2.2.0 database upgrade failure due to older orphaned jar ...
During an upgrade from Sentinel 8.2.0.0 the database upgrade failed, after the main Sentinel upgrade failed. After investigation, it was determined that there were some ...
Comments (0) | by: Rob M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
4
Fix your post 8.2.2.0 installer to require 4 CPUs
Sentinel 8.2.2.0 will not successfully install on Linux without 4 cores assigned to the box. I recently spent around a week trying to get a clean 8.2.2.0 install to work ...
Comments (0) | by: Rob M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
1
Fix your post 8.2.2.0 installer to require 4 CPUs
Sentinel 8.2.2.0 will not successfully install on Linux without 4 cores assigned to the box. I recently spent around a week trying to get a clean 8.2.2.0 install to work ...
Comments (0) | by: Rob M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
5
Make correlation event retention length configurable separately from ...
Provide the means to configure correlation event retention to a different period than data event retention in order to prevent the PostgreSQL from growing too large.
Comments (1) | by: Nicholas V. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
4
Export configuration in clear text
Customer HELAB need a tool to export the complete configuration in clear text or pdf to have a documentation of their system. This is needed because of regulation ...
Comments (0) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
1
Option to Stopp Collector and delete all incoming Events
When a collector ist stopped the incoming events are stored (PageFiles) and a filesystem can be filled with this files. So an second option would be very usefull: The ...
Comments (0) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Sentinel.
