• Votes

    1

    File Connector: File missing log event should contain event source ...

    When file connector reports file missing. The event should contain event source information. This event is created in /var/opt/novell/sentinel/server0.0.log file.

  • Votes

    1

    Event Export Filters

    When exporting the Events from a Search query, there is only "Select All"/"Clear All". More often than not, a user would export the same fields for queries they run ...

  • Votes

    2

    Adding comments/notes to an Event Routing Rule

    Our customer would like to add note (or comment) to an Event Routing Rule, but currently it is not possible. Please, add this new field to Sentinel

  • Votes

    3

    Sentinel does not provide an explicit logout message

    Please provide the following enhancement to the NetIQ Sentinel web interface: An explicit logout message indicating that the authenticated communications session has been ...

  • Votes

    2

    Improve NoDataAlert

    Is there a way to improve this event? Currently it gets logged as a generic 'Internal' event and all of the data is in the message field with none of it parsed out. ...

  • Votes

    2

    Palo Alto NGFW

    Today, the operation system version of the Palo Alto NGFW is PAN-OS 8.1. However, the version we support is 6.0 in https://www.netiq.com/support/sentinel/plugins/ Do we ...

  • Votes

    2

    Certify the use of BigIP together with Sentinel, SAM and UAM

    Because a SAM Central Computer only can connect to one Collector Manager. It would be nice if it was supported adding a BigIP between SAMservers and Collector Managers. ...

  • Votes

    3

    Change Guardian Agent install

    In CG version 5.1 there is no more build in option to do a agent install via software distribution software. There is a cool solution: ...

  • Votes

    5

    Configurable Alarm View

    there is only a non-configurable Alarm view. It would be great to have it configurabel to have other/more table rows. e.g. in the Alarm View list it would very helpful ...

  • Votes

    6

    Ability to recreate an empty database (Postgres, mongo)

    Normally running the 'backup_util.sh' is the part of the daily routine to make a backup about the required components (mainly the config, SI, alerts, etc...) In a case ...

  • Votes

    1

    Customer needs Microsoft Radius data to be parsed correctly.

    A customer has Microsoft Radius server and they need to be able to search on the mac address. Unfortunately all other systems use a format like this: 00:AA:00:12:34:56, ...

  • Votes

    6

    Read only user

    There should be a posibility to create a read omly user in Sentinel. This is important for Auditors to check the system. This user should have the rights to see ...

  • Votes

    5

    Agent Manager Agent shoud send Heartbeat Events to detekt that it is ...

    There should be a possiblity to detect that an Agent Manager Agent is running independent from sending events to Sentinel. I think one possibilty would be to have a ...

  • Votes

    12

    Certify Sentinel for High availability on Red Hat Linux

    High availability/Clustering for Sentinel is only supported and certified on SLES or SLES appliances. There is no supported high availability option available for ...

  • Votes

    2

    389 Directory Server plugins

    The goal is to parse 389 Directory Server logs

  • Votes

    5

    Tenant based roles to allow to run remote searches or manage ...

    Customer reported that they are planning to deploy a multi tenant Sentinel system. They would like to use multi-tier architecture, where they have multiple Sentinel for ...

  • Votes

    2

    Prevent transmission of report/e-mail when the report is blank

    We need option to prevent the transmission of e-mail alert when the scheduled report generated is blank in reporting module

  • Votes

    2

    Manage alerts from multiple sentinel deployment using single ...

    In the client's environment, they have multiple Sentinel deployments (Prod, Test, DMZ etc) Each of the environments have their own alerts that they can investigate and ...

  • Votes

    2

    Send full message field when fired by Correlation Rules

    Correlation Rules: Actions -> Send Email (Full Customization of all fields) Normally, the message field is not recommended to be used with Correlation Rules due to the ...

  • Votes

    5

    allow additional links to be added to app navigation bar

    The left nav bar in the Sentinel app currently has links for home, main, search and (at the bottom) security health. This leaves a lot of room that could be used to add ...