-
Votes
1
Read SAP Security Audit Log via RSAU_API_GET_ALERTS
From SAP Note 2191612 - FAQ | Use of Security Audit Log as of SAP NetWeaver 7.50 42. Can recorded events be promptly transferred to a central alert cockpit? The RFC ...
Comments (0) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
5
EVT/EVTX file via Agent Manager Agent
In agent manager you can read a Single Line Log. It would be a great enhancement to read also evt/evtx files, because there are several software products that write ...
Comments (1) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
1
ArcSight CEF CustomFieldMap
Need to include CEF Custom String and Number Labels out of the box. Labels are different for each product. ~~Sentinel Event Field~~,~~Input Record Field~~ ...
Comments (1) | by: Bryan W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
1
User Inactivity Timeout
Need User Inactivity Timeout option. Session timeout exists but will kill session while user is actively working. GUI 'Security' section preferred.
Comments (0) | by: Bryan W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
1
Disable User - Improved
Current Process: Edit User Disable user account Save ERROR Save user failed ERROR Passwords don't match *Have to set password just to disable. Why? Proposed Process 1: ...
Comments (2) | by: Bryan W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
1
Limit concurrent user sessions
Need option to limit concurrent user sessions in Sentinel Client Request
Comments (0) | by: Bryan W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
1
Allow to comment on each event in an alert separately
In some cases to differentiate events that are attached to an alert analysts have to document some information for each event separately (i.e. each event having different ...
Comments (0) | by: Piotr G. | over a year ago | Last activity over a year ago | Status changed over a year ago | Dashboards/Visualizations
-
Votes
2
Extend windows event logs possibilities in SAM
It could be interesting to extend windows logs (currently limited to secuity ad system logs) to others services/software like sysmon logs; powershell logs, RDP logs in ...
Comments (0) | by: david a. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
3
Appliance based Elastic Nodes for event visualisation
The requirement to build your own elastic nodes to provide event visualisation, means this is not a full product, this then requires additional Server OS licencing. All ...
Comments (0) | by: damon k. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
5
Aruba Mobility Controller with younger OS
We downloaded the latest SmartConnector package (ArcSight-7.11.0.8139.0-Connector-Linux64.bin). Customer would like to collect data (with Aruba SC) from their Aruba ...
Comments (0) | by: Erno P. | over a year ago | Last activity over a year ago | Status changed over a year ago | Supported Platforms
-
Votes
5
Dashboard / Visualization from other Sentine Server
I need an option to use the Data Federation not only on searches and Reports, but also on Dashboards and Visualization. This is very important for scalability issues to ...
Comments (1) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Dashboards/Visualizations
-
Votes
1
File Connector: File missing log event should contain event source ...
When file connector reports file missing. The event should contain event source information. This event is created in /var/opt/novell/sentinel/server0.0.log file.
Comments (0) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
1
Event Export Filters
When exporting the Events from a Search query, there is only "Select All"/"Clear All". More often than not, a user would export the same fields for queries they run ...
Comments (0) | by: Ben W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
2
Adding comments/notes to an Event Routing Rule
Our customer would like to add note (or comment) to an Event Routing Rule, but currently it is not possible. Please, add this new field to Sentinel
Comments (0) | by: Erno P. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
5
Sentinel does not provide an explicit logout message
Please provide the following enhancement to the NetIQ Sentinel web interface: An explicit logout message indicating that the authenticated communications session has been ...
Comments (0) | by: Hoa L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
3
Improve NoDataAlert
Is there a way to improve this event? Currently it gets logged as a generic 'Internal' event and all of the data is in the message field with none of it parsed out. ...
Comments (0) | by: Paul R. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
2
Palo Alto NGFW
Today, the operation system version of the Palo Alto NGFW is PAN-OS 8.1. However, the version we support is 6.0 in https://www.netiq.com/support/sentinel/plugins/ Do we ...
Comments (1) | by: Jack L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
2
Certify the use of BigIP together with Sentinel, SAM and UAM
Because a SAM Central Computer only can connect to one Collector Manager. It would be nice if it was supported adding a BigIP between SAMservers and Collector Managers. ...
Comments (0) | by: John S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
3
Change Guardian Agent install
In CG version 5.1 there is no more build in option to do a agent install via software distribution software. There is a cool solution: ...
Comments (1) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Votes
7
Configurable Alarm View
there is only a non-configurable Alarm view. It would be great to have it configurabel to have other/more table rows. e.g. in the Alarm View list it would very helpful ...
Comments (1) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Dashboards/Visualizations
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Sentinel.
