-
Votes
13
Need Collector Plugin for Splunk
Hi, I have an issues when Splunk SIEM forwards the logs towards Sentinel Collector. I received the logs coming from 1 node which have multiple logs per devices(Palo Alto ...
Comments (1) | by: Syahir A. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
3
MSG Field size to 16kB
The message field size should be bigger. Some of custom log event sources require bigger msg size.
Comments (0) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
1
Integrate the 9443 console certificate mechanism of the Sentinel 8.2.0 ...
Appliances created with SUSE studio have a security certificate mechanism integrated into the port 9443 administration console. This mechanism greatly simplifies the ...
Comments (0) | by: Grant G. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
2
Sentinel 8.2.2.0 database upgrade failure due to older orphaned jar ...
During an upgrade from Sentinel 8.2.0.0 the database upgrade failed, after the main Sentinel upgrade failed. After investigation, it was determined that there were some ...
Comments (0) | by: Rob M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
4
Fix your post 8.2.2.0 installer to require 4 CPUs
Sentinel 8.2.2.0 will not successfully install on Linux without 4 cores assigned to the box. I recently spent around a week trying to get a clean 8.2.2.0 install to work ...
Comments (0) | by: Rob M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
1
Fix your post 8.2.2.0 installer to require 4 CPUs
Sentinel 8.2.2.0 will not successfully install on Linux without 4 cores assigned to the box. I recently spent around a week trying to get a clean 8.2.2.0 install to work ...
Comments (0) | by: Rob M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
5
EVT/EVTX file via Agent Manager Agent
In agent manager you can read a Single Line Log. It would be a great enhancement to read also evt/evtx files, because there are several software products that write ...
Comments (1) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
3
Appliance based Elastic Nodes for event visualisation
The requirement to build your own elastic nodes to provide event visualisation, means this is not a full product, this then requires additional Server OS licencing. All ...
Comments (0) | by: damon k. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
2
Palo Alto NGFW
Today, the operation system version of the Palo Alto NGFW is PAN-OS 8.1. However, the version we support is 6.0 in https://www.netiq.com/support/sentinel/plugins/ Do we ...
Comments (1) | by: Jack L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
2
Certify the use of BigIP together with Sentinel, SAM and UAM
Because a SAM Central Computer only can connect to one Collector Manager. It would be nice if it was supported adding a BigIP between SAMservers and Collector Managers. ...
Comments (0) | by: John S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
3
Change Guardian Agent install
In CG version 5.1 there is no more build in option to do a agent install via software distribution software. There is a cool solution: ...
Comments (1) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
12
Certify Sentinel for High availability on Red Hat Linux
High availability/Clustering for Sentinel is only supported and certified on SLES or SLES appliances. There is no supported high availability option available for ...
Comments (0) | by: Matthew R. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
0
"Status Details" statistics do not persist on Sentinel service restart
Within the Sentinel Control Center (SCC) --> Event Source Management --> Live View... --> Table tab --> expand any Collector Manager. The statistics do not persist upon ...
Comments (0) | by: John G. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
2
Bulk plugin download
Updating and downloading plugins is a time consuming and manual process. It is especially difficult as you need to download each one individually. It is also challenging ...
Comments (1) | by: John G. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
3
Enable Postgresql DB storage to use an different filesystem/partition ...
When the DB is on the same store as the event store, either the DB or the event store overrunning available storage can create problems for the other store. Also, ...
Comments (0) | by: Brandon L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
4
webhelper to interact with REST api from collectors and actions
If one wants to interact with Sentinel's REST api a https connection need to be established and authenticated. This can be cumbersome from an action or collector and ...
Comments (2) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
6
WTMP Agent RPM
Worlking at Worldline in a Sentinel project. Worldline has already a Linuy based "Siem" for Linux events, that the buils on Linux scripting. Now they build a Sentinel ...
Comments (2) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
10
Make Sentinel 8 CentOS 7 "compatible"
Hi, Sometimes I want to install Sentinel to CentOS (e.g no hassle with licensing in labs). Sentinel 7.4 series run fine in Centos 6.x. Would developers make Sentinel 8 ...
Comments (2) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
2
Use Delta RPMs for Appliance
The size of the current RPMs is very significant, both to download/bandwidth and the temporary disk requirements. This is extremely slow and often unreliable when ...
Comments (1) | by: Ben W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
8
A way to migrate event and rawdata from Sentinel installation to ...
Currently there is no way to migrate event and rawdata between separate Sentinel Installations. The current "Find data" operability in Data Restoration supports only ...
Comments (0) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Sentinel.
