• Votes

    1

    Integrate the 9443 console certificate mechanism of the Sentinel 8.2.0 ...

    Appliances created with SUSE studio have a security certificate mechanism integrated into the port 9443 administration console. This mechanism greatly simplifies the ...

  • Votes

    2

    Better LDAP integration

    Currently the LDAP integration is extremely basic. It requires far too much work to get it to work with an LDAP load balancer. The best LDAP integrations automatically ...

  • Votes

    2

    Sentinel 8.2.2.0 database upgrade failure due to older orphaned jar ...

    During an upgrade from Sentinel 8.2.0.0 the database upgrade failed, after the main Sentinel upgrade failed. After investigation, it was determined that there were some ...

  • Votes

    2

    Fix your post 8.2.2.0 installer to require 4 CPUs

    Sentinel 8.2.2.0 will not successfully install on Linux without 4 cores assigned to the box. I recently spent around a week trying to get a clean 8.2.2.0 install to work ...

  • Votes

    1

    Fix your post 8.2.2.0 installer to require 4 CPUs

    Sentinel 8.2.2.0 will not successfully install on Linux without 4 cores assigned to the box. I recently spent around a week trying to get a clean 8.2.2.0 install to work ...

  • Votes

    5

    Make correlation event retention length configurable separately from ...

    Provide the means to configure correlation event retention to a different period than data event retention in order to prevent the PostgreSQL from growing too large.

  • Votes

    4

    Export configuration in clear text

    Customer HELAB need a tool to export the complete configuration in clear text or pdf to have a documentation of their system. This is needed because of regulation ...

  • Votes

    1

    Option to Stopp Collector and delete all incoming Events

    When a collector ist stopped the incoming events are stored (PageFiles) and a filesystem can be filled with this files. So an second option would be very usefull: The ...

  • Votes

    1

    Read SAP Security Audit Log via RSAU_API_GET_ALERTS

    From SAP Note 2191612 - FAQ | Use of Security Audit Log as of SAP NetWeaver 7.50 42. Can recorded events be promptly transferred to a central alert cockpit? The RFC ...

  • Votes

    5

    EVT/EVTX file via Agent Manager Agent

    In agent manager you can read a Single Line Log. It would be a great enhancement to read also evt/evtx files, because there are several software products that write ...

  • Votes

    1

    ArcSight CEF CustomFieldMap

    Need to include CEF Custom String and Number Labels out of the box. Labels are different for each product. ~~Sentinel Event Field~~,~~Input Record Field~~ ...

  • Votes

    1

    User Inactivity Timeout

    Need User Inactivity Timeout option. Session timeout exists but will kill session while user is actively working. GUI 'Security' section preferred.

  • Votes

    1

    Disable User - Improved

    Current Process: Edit User Disable user account Save ERROR Save user failed ERROR Passwords don't match *Have to set password just to disable. Why? Proposed Process 1: ...

  • Votes

    1

    Limit concurrent user sessions

    Need option to limit concurrent user sessions in Sentinel Client Request

  • Votes

    1

    Allow to comment on each event in an alert separately

    In some cases to differentiate events that are attached to an alert analysts have to document some information for each event separately (i.e. each event having different ...

  • Votes

    2

    Extend windows event logs possibilities in SAM

    It could be interesting to extend windows logs (currently limited to secuity ad system logs) to others services/software like sysmon logs; powershell logs, RDP logs in ...

  • Votes

    3

    Appliance based Elastic Nodes for event visualisation

    The requirement to build your own elastic nodes to provide event visualisation, means this is not a full product, this then requires additional Server OS licencing. All ...

  • Votes

    5

    Aruba Mobility Controller with younger OS

    We downloaded the latest SmartConnector package (ArcSight-7.11.0.8139.0-Connector-Linux64.bin). Customer would like to collect data (with Aruba SC) from their Aruba ...

  • Votes

    5

    Dashboard / Visualization from other Sentine Server

    I need an option to use the Data Federation not only on searches and Reports, but also on Dashboards and Visualization. This is very important for scalability issues to ...

  • Votes

    1

    File Connector: File missing log event should contain event source ...

    When file connector reports file missing. The event should contain event source information. This event is created in /var/opt/novell/sentinel/server0.0.log file.