-
Planned
8
User behavior analytics(UBA)
All leading SIEM products provide UBA; its a must feature for any modern-day SIEM. Unavailability of UBA is one of the major reason, competitors take edge in POC demos ...
Comments (1) | by: Muhammad S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
2
Email zipped events in notification when correlation rule hits.
We need the events to be zipped in mail notification as it becomes easier to analyze events if there are too many events.
Comments (0) | by: ajinkya d. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
6
Email zipped events in notification when correlation rule hits.
We need the events to be zipped in mail notification as it becomes easier to analyze events if there are too many events.
Comments (0) | by: securview s. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
3
Meraki Firewall Collector Plugin development
The Cisco Meraki proprietary packet processing engine analyzes network traffic up to and including layer 7. Cisco Meraki's next generation firewall controls evasive, ...
Comments (0) | by: securview s. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
10
make searching for "lateral movement" easier in the WebUI
I really like the feature of being able clicking on fields to add a new criteria to the search query. When analyzing events, I often need to find similar events and do a ...
Comments (3) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Dashboards/Visualizations
-
Votes
9
pseudonymization of user identifiers
Data privacy laws and regulations in certain areas prohibit the use of subject’s real names or identifiers which can easily be attributed to a subject (e.g. account names ...
Comments (2) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Dashboards/Visualizations
-
Votes
2
Integrate with Serena tools for IT service management
Companies who handle their ITIL processes using Serena want to do the same for their incident response process. The "Computer Security Incident Response Plan Management" ...
Comments (1) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Planned
4
notification on alert creation or owner change
there should be an option to notify the owner if an alert is assigned.
Comments (4) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
4
webhelper to interact with REST api from collectors and actions
If one wants to interact with Sentinel's REST api a https connection need to be established and authenticated. This can be cumbersome from an action or collector and ...
Comments (2) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
4
Add FQDN host fields
Currently Sentinel splits fully qualified DNS names into a Hostname and the Domain part. That makes it diffucult to use thread intelligence feeds in dynamic lists, as ...
Comments (0) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
5
allow additional links to be added to app navigation bar
The left nav bar in the Sentinel app currently has links for home, main, search and (at the bottom) security health. This leaves a lot of room that could be used to add ...
Comments (0) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Dashboards/Visualizations
-
Votes
1
Read SAP Security Audit Log via RSAU_API_GET_ALERTS
From SAP Note 2191612 - FAQ | Use of Security Audit Log as of SAP NetWeaver 7.50 42. Can recorded events be promptly transferred to a central alert cockpit? The RFC ...
Comments (0) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
2
syslog connector to route events based on CEF Vendor Product
Add an an additional “CEFVendorProduct” Package Policy, which works just like “Application ID” but uses the two CEF header fields for routing decision. The precedence of ...
Comments (0) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
1
Salesforce collector
Micro Focus should have a Salesforce collector. this from Salesforce describes a very typical usecase: ...
Comments (0) | by: Pekka L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
2
Micro Focus should have a MS Dynamics collector +
Micro Focus should have a collector that supports MS Dynamics in the cloud but preferrably all services that a Sentinel customer is using from MS Azure. Here's MS page ...
Comments (0) | by: Pekka L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
2
Kafka connector
Our client has centralized data storage created on Hadoop. They are transferring data from self designed applications through Apache Kafka. It would be nice to have ...
Comments (1) | by: Jakub M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
6
Asset mapping for hostnames
Current Asset mapping works only for IP and tenant name as a keys. But some customers use hostnames as the asset identification as they use DHCP servers. It is not ...
Comments (1) | by: Jakub M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Search results sorting
Currenty search results are sorted descending according to Event Time. But when two same events have the Event Time parameter same, the order of these events is wrong. ...
Comments (1) | by: Jakub M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
13
Multiple roles for users
Current user role allocation supports well administration, but how to allocate rights easily in user environment (for users that only go there to search events and run ...
Comments (3) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
A way to migrate event and rawdata from Sentinel installation to ...
Currently there is no way to migrate event and rawdata between separate Sentinel Installations. The current "Find data" operability in Data Restoration supports only ...
Comments (0) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Sentinel.
