-
Votes
4
Syslog over TCP needs to recognize NULL characters as message ...
Some products like Juniper Netscreen use NULL character as a Syslog message delimiter. Our Syslog connector does not treat NULL char as a delimiter and as a result, ...
Comments (1) | by: Pradeep K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
6
Possibility to restart individual Event source via CLI or REST API
Background: We have severe problems with File Connector log sources and have not get solution for that yet. For some reason file reading hangs occasionaly and never ...
Comments (0) | by: Kimmo J. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
Kafka connector
Our client has centralized data storage created on Hadoop. They are transferring data from self designed applications through Apache Kafka. It would be nice to have ...
Comments (1) | by: Jakub M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
1
IBM zOS Collector
IBM zOS mainframe collector to help parse and correlate the logs sent to sentinel. This type of collector would help translate RACF logs and Type80 send logs in CEF ...
Comments (1) | by: David E. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
5
Update SSL Certificates
Please either allow or build in a function to allow the update of an SSL certificate issued from either a third party CA or an internal CA for website functionality. In ...
Comments (1) | by: David E. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
6
File Connector - Keep file offset data stored while moving log source ...
Now, when moving file log source from cm to another it does not store offset data. This should be fixed. -Br, TimoS
Comments (1) | by: Timo S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
2
Correlation Rules Firing - Scheduled Email Alerts
The ability to have emails from correlation rule event firing to go to a different (or additional) email address during a certain time period would be invaluable. e..g ...
Comments (1) | by: Paul R. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
10
Support for Oracle Service names instead of SID
A company may standardize on using service names because when using Oracle RAC. The Sentinel Data Synchronization to Oracle feature is only possible by using the SID of ...
Comments (2) | by: John G. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Planned
8
User behavior analytics(UBA)
All leading SIEM products provide UBA; its a must feature for any modern-day SIEM. Unavailability of UBA is one of the major reason, competitors take edge in POC demos ...
Comments (1) | by: Muhammad S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
6
Normalize severity against a standard severity scale rather than ...
Different vendors attribute different severities to certain types of events based on their own internal way of looking at the data. When Sentinel sets the severity, it ...
Comments (2) | by: Brandon L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
1
General users should be able to view Health Status Info
General users should be able to view but not edit or modify the following collection - Overview & Event sources Storage - Health, report jobs, search jobs When ...
Comments (1) | by: Gus M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
3
Microsoft ATA
Create and release to test a new Microsoft ATA collector plugin for Sentinel 7/8 to integrate with leading edge threat analytics platforms
Comments (1) | by: John G. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
6
Support Wildcarding In Dynamic Lists
Dynamic Filters should allow the same CIDR notation and wildcarding that Lucene allows specifically for IP addresses. Should also allow ranges like 10.14.1.[1-50]
Comments (1) | by: John G. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
2
iSeries agent for Sentinel Agent Manager 8.0
Request to build iSeries agent for Sentinel Agent Manager 8.0
Comments (2) | by: Fredric T. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
4
webhelper to interact with REST api from collectors and actions
If one wants to interact with Sentinel's REST api a https connection need to be established and authenticated. This can be cumbersome from an action or collector and ...
Comments (2) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Installation/Deployment
-
Planned
4
notification on alert creation or owner change
there should be an option to notify the owner if an alert is assigned.
Comments (4) | by: Norbert K. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
3
Data Synchronization enhancement
Enhance the data synchronization feature to allow the user to specify a start and finish date. Additionally, allow the user to kick-off the job on a specific date/time ...
Comments (2) | by: Richard B. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
4
Samba v2 and v3 support in file connector
File connector should be able to use SMB v2 and v3.
Comments (5) | by: Piotr P. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
2
Ability to Export\Import Routing Rules
In some environments there may be many routing rules configured in Sentinel to do things like forward events via Sentinel link, tag events, or forward to another syslog ...
Comments (3) | by: Eric L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
3
bintec Collector
A collector for bintec router/VPN devices would be fine
Comments (1) | by: Ulrich S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Sentinel.
