-
Votes
10
Make Sentinel 8 CentOS 7 "compatible"
Hi, Sometimes I want to install Sentinel to CentOS (e.g no hassle with licensing in labs). Sentinel 7.4 series run fine in Centos 6.x. Would developers make Sentinel 8 ...
Comments (2) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
4
Use Email lists in correlation events
If you have multiple recipients for correlation event alarms, you have to create from CC's action manager an action for each recipient or add multiple addresses to the ...
Comments (2) | by: Jari V. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
9
Search results sorting
Currenty search results are sorted descending according to Event Time. But when two same events have the Event Time parameter same, the order of these events is wrong. ...
Comments (1) | by: Jakub M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
6
Asset mapping for hostnames
Current Asset mapping works only for IP and tenant name as a keys. But some customers use hostnames as the asset identification as they use DHCP servers. It is not ...
Comments (1) | by: Jakub M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
Integrate with Serena tools for IT service management
Companies who handle their ITIL processes using Serena want to do the same for their incident response process. The "Computer Security Incident Response Plan Management" ...
Comments (1) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
13
Multiple roles for users
Current user role allocation supports well administration, but how to allocate rights easily in user environment (for users that only go there to search events and run ...
Comments (3) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
Use Delta RPMs for Appliance
The size of the current RPMs is very significant, both to download/bandwidth and the temporary disk requirements. This is extremely slow and often unreliable when ...
Comments (1) | by: Ben W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
7
Enable Users to Toggle Case Sensitivity in Dynamic Lists
When leveraging values in dynamic lists, Sentinel currently enforces case sensitivity when using those values in correlation rules. In some cases, this can be misleading ...
Comments (1) | by: Eric L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
6
Carbon Black Enterprise Response collector
Carbon Black Enterprise Response is well know in this space. With no Sentinel Collector, that's a significant blindspot of device and user activity in our network.
Comments (2) | by: Richard M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Planned
5
Forcepoint's web gateways AP-Web collector
Forcepoint's web gateways AP-Web is well know in this space. With no Sentinel Collector, that's a significant blindspot of device and user activity in our network.
Comments (1) | by: Richard M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Planned
2
Forcepoint's Data Leak Prevention (DLP) AP-Data collector
Forcepoint's Data Leak Prevention (DLP) AP-Data is well know in this space. With no Sentinel Collector, that's a significant blindspot of device and user activity in our ...
Comments (0) | by: Richard M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Planned
3
Meraki Firewall Collector Plugin development
The Cisco Meraki proprietary packet processing engine analyzes network traffic up to and including layer 7. Cisco Meraki's next generation firewall controls evasive, ...
Comments (0) | by: securview s. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
8
A way to migrate event and rawdata from Sentinel installation to ...
Currently there is no way to migrate event and rawdata between separate Sentinel Installations. The current "Find data" operability in Data Restoration supports only ...
Comments (0) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
9
CM backup
Customers are asking why we do not have official backup/restore script or other CLI method to export/import CM configuration.
Comments (0) | by: Piotr P. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
9
pseudonymization of user identifiers
Data privacy laws and regulations in certain areas prohibit the use of subject’s real names or identifiers which can easily be attributed to a subject (e.g. account names ...
Comments (2) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Dashboards/Visualizations
-
Votes
10
make searching for "lateral movement" easier in the WebUI
I really like the feature of being able clicking on fields to add a new criteria to the search query. When analyzing events, I often need to find similar events and do a ...
Comments (3) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Dashboards/Visualizations
-
Votes
17
Customize Email-Alert fields
Situation: in the js-email-alert function you can choose between "Important Data", "All-Data", and "Minimal Data". If you use CustomVariable or need some other variables ...
Comments (1) | by: Torsten F. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
6
Email zipped events in notification when correlation rule hits.
We need the events to be zipped in mail notification as it becomes easier to analyze events if there are too many events.
Comments (0) | by: securview s. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
Email zipped events in notification when correlation rule hits.
We need the events to be zipped in mail notification as it becomes easier to analyze events if there are too many events.
Comments (0) | by: ajinkya d. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
18
View single raw data event in the WebUI
Sometimes I miss the ability to quickly preview a single raw data (event) related to the event I want to check. Customers are asking for this too.
Comments (6) | by: Piotr P. | over a year ago | Last activity over a year ago | Status changed over a year ago | Dashboards/Visualizations
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Sentinel.
