• Votes

    1

    SecureLogin: MAC-Client needed

    SecureLogin seems to be a great tool for a simple SSO. But w/o MAC-Support we can not deploy this solution. Our executives are using MAC and they prefer applikations ...

  • Votes

    3

    Customer needs the ability to process EVTX files from netapp

    Sentinel should be capable of ingesting evtx files from netapp

  • Votes

    3

    Generating Security Intelligence Graph with Custom Field for Y-axis

    Currently Sentinel able to generates security intelligence graph using event per seconds as Y-axis. Suggest to enable graph generating with custom integer as Y-axis (as ...

  • Votes

    2

    Add FQDN host fields

    Currently Sentinel splits fully qualified DNS names into a Hostname and the Domain part. That makes it diffucult to use thread intelligence feeds in dynamic lists, as ...

  • Votes

    5

    F5 parser Event Name in clear text ...

    Hi, This Collector has been added to support High Speed logging. The collector uses log message ID numbers as Event Name. This is not clear text and clear to understand. ...

  • Votes

    4

    Support for eStreamer via Cisco nCore client

    Cisco is in the process of releasing a client for collecting via eStreamer that is supported and maintained by them rather than asking their consumers to write custom ...

  • Votes

    3

    Support for RELP (Reliable Event Logging Protocol)

    One of our customer was trying to use rsyslog with Relp to securly send events to Sentinel. Since Relp seems to become a quite common it would be a good thing if Sentinel ...

  • Votes

    8

    Add customizable message banner at login

    In the same way people get a message banner warning that they are going to see sensitive data and will be liable for misuse of resources, so should we support adding a ...

  • Votes

    4

    Support security features provided by SNMP v3

    Authentication in SNMP v1 and v2 is nothing but community string sent in clear text. SNMPv3 does not use community strings, but uses password based authentication and ...

  • Votes

    5

    Cisco Firesight should support syslog

    Hi, One of our customers, ACCELYA WORLD S L U, logged the below with us: --- We need to handle events from cisco firesight version 6.x, but we see that the specific ...

  • Votes

    3

    CG reports (.csv) should print events line by line without any report ...

    When the CG reports are generated, the output of the report with the selected events will be displayed in the proper report specific format. Whereas, when the events ...

  • Votes

    4

    VMWare vCenter logs

    vCenter makes most of it's logging available in the Windows Event log for software-based installations, and via Syslog for appliance (VCSA) installations, at least from ...

  • Votes

    2

    brocade collector

    Sentinel does not currently have a brocade collector plugin.

  • Votes

    2

    Micro Focus should have a MS Dynamics collector +

    Micro Focus should have a collector that supports MS Dynamics in the cloud but preferrably all services that a Sentinel customer is using from MS Azure. Here's MS page ...

  • Votes

    2

    Micro Focus should have a AWS collector

    Microfocus should have an AWS collector. Here's AWS page that describes their logging https://aws.amazon.com/answers/logging/centralized-logging/

  • Votes

    1

    Salesforce collector

    Micro Focus should have a Salesforce collector. this from Salesforce describes a very typical usecase: ...

  • Votes

    4

    Checksum for eventdata

    Currently Sentinel creates checksum only for rawdata in secondary storage. There are some cases where checksum is needed to event data as well. -Br, TimoS

  • Votes

    5

    CheckPoint LEA Connector missing critical pieces of information

    I've spotted some flaws on CheckPoint collector. I'm giving one example from blade "URL Filtering" in CheckPoint These fields are : appi_name, matched_category, ...

  • Votes

    2

    Supporting Syslog TCP with Octet Counting Framing

    This framing mode is yet to have a wide acceptance. Also, the latest rsyslog does have an optional mode for this --> ...

  • Votes

    4

    Syslog over TCP needs to recognize NULL characters as message ...

    Some products like Juniper Netscreen use NULL character as a Syslog message delimiter. Our Syslog connector does not treat NULL char as a delimiter and as a result, ...