-
Votes
4
Add FQDN host fields
Currently Sentinel splits fully qualified DNS names into a Hostname and the Domain part. That makes it diffucult to use thread intelligence feeds in dynamic lists, as ...
Comments (0) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
4
Every JDBC database log source requires their own collector --> One ...
Hi, Currently JDBC database implementation needs a collector per single logsource. Even if the query is the same between servers. The offset value seems to be stored in ...
Comments (2) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Planned
4
Kaspersky Security Center Collector
Kaspersky is one of the Top 5 Security Solutions on the market. Collectors for McAfee, Sophos, Symantec, Trend Micro exist, the creation of a Kaspersky Security Center ...
Comments (3) | by: Jan R. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Planned
4
Support security features provided by SNMP v3
Authentication in SNMP v1 and v2 is nothing but community string sent in clear text. SNMPv3 does not use community strings, but uses password based authentication and ...
Comments (3) | by: Srinivas R. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
4
Samba v2 and v3 support in file connector
File connector should be able to use SMB v2 and v3.
Comments (5) | by: Piotr P. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
4
Syslog over TCP needs to recognize NULL characters as message ...
Some products like Juniper Netscreen use NULL character as a Syslog message delimiter. Our Syslog connector does not treat NULL char as a delimiter and as a result, ...
Comments (1) | by: Pradeep K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Planned
4
Sentinel User Permissions for Web Interface and REST API procedure ...
A recent investigation into the automation of creating new event source objects within Sentinel via external sources has revealed that the permissions necessary to invoke ...
Comments (2) | by: Ted E. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
3
Better LDAP integration
Currently the LDAP integration is extremely basic. It requires far too much work to get it to work with an LDAP load balancer. The best LDAP integrations automatically ...
Comments (0) | by: Rob M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
3
bintec Collector
A collector for bintec router/VPN devices would be fine
Comments (1) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
3
File Connector should support an option to rename the processed logs
Originally tracked in bug: https://bugzilla.netiq.com/show_bug.cgi?id=455690 The file connector should follow the pattern that IDM follows, which is simply provide the ...
Comments (0) | by: Brandon L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
3
Sentinel plugin for Log4j
It is a popular implementation to log application data
Comments (0) | by: John G. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
3
Support for RELP (Reliable Event Logging Protocol)
One of our customer was trying to use rsyslog with Relp to securly send events to Sentinel. Since Relp seems to become a quite common it would be a good thing if Sentinel ...
Comments (0) | by: Lennart J. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
3
VMware NSX Collector for Sentinel
There is no supported collector for VMware NSX in Sentinel. Create a collector that supports the VMware NSX platform/technology. VMware's Network virtualization ...
Comments (1) | by: Anthony D. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
3
Browse to AD objects when creating correlation rule or lists.
It would be good if we could leverage some of the technology in CG to browse to AD objects when creating correlation rule or lists.
Comments (0) | by: James H. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
3
Microsoft ATA
Create and release to test a new Microsoft ATA collector plugin for Sentinel 7/8 to integrate with leading edge threat analytics platforms
Comments (1) | by: John G. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Planned
3
Meraki Firewall Collector Plugin development
The Cisco Meraki proprietary packet processing engine analyzes network traffic up to and including layer 7. Cisco Meraki's next generation firewall controls evasive, ...
Comments (0) | by: securview s. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
2
syslog connector to route events based on CEF Vendor Product
Add an an additional “CEFVendorProduct” Package Policy, which works just like “Application ID” but uses the two CEF header fields for routing decision. The precedence of ...
Comments (0) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
2
Enable file connector to read compressed files
Originally tracked in bug: https://bugzilla.netiq.com/show_bug.cgi?id=779043 The customer's Blue Coat proxy appliance stores logs to disk. If they grow to more then 10 ...
Comments (0) | by: Brandon L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
2
support pure-ftpd access log
I hope to be able to target pure-ftp log to parsing, because many of my customers use novell ftp to access nss volume, and novell ftp uses pure-ftpd service, so audit ...
Comments (1) | by: johnson y. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
2
CheckPoint R80.xx: LogExporter Collector is needed
CheckPoint has migrated from LEA-protocol to LogExporter (syslog) to integrate with SIEM products. At the same time the log event format has changed. Therefore a new ...
Comments (0) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Sentinel.
