This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
NetWitness Discussions

Importing log data into Investigator

Go to solution
Anonymous
Not applicable

‎2012-11-20 02:31 PM

Can the free version of Investigator also work with log data as supported by NetWitness for logs?

 

 

I'm have syslog files that I want to import into Investigator to see how the data would be parsed.

 

 

Or does Investigator only work with packet captures?

 

 

Thanks

0 Likes
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
RSAAdmin
Beginner
Beginner

‎2012-11-30 01:42 PM

You can only import packet data into a local collection.  There are no plans to enhance Investigator because it has been replaced with Security Analytics and no longer ships with v10.x.  However 9.8 Investigator/Administrator is compatible with v10.x appliances.

 

Scott

View solution in original post

0 Likes
2 REPLIES 2

Go to solution
RSAAdmin
Beginner
Beginner

‎2012-11-30 01:42 PM

You can only import packet data into a local collection.  There are no plans to enhance Investigator because it has been replaced with Security Analytics and no longer ships with v10.x.  However 9.8 Investigator/Administrator is compatible with v10.x appliances.

 

Scott

0 Likes

Go to solution
Anonymous
Not applicable
In response to RSAAdmin

‎2012-11-30 03:11 PM

Thanks for the response. I guess a moving target as the Technology is maturing and we are right in the middle of it.

 

 

 

John

0 Likes
© 2022 RSA Security LLC or its affiliates. All rights reserved.