2018-09-25 10:47 AM
I am currently working in an environment that is running older EOS hardware, and using version 3.8.6 of the SSL Netwitness Platform software
My question is what would be a viable software update path, to at least get to the highest working version of the software?
Can someone point me in the direction of this documentation?
Thanks,
Steven M. Robbins
Security Engineer
2018-09-25 10:53 AM
Steven,
Is your hardware really on 3.8.6 of Netwitness? I so that is probably 10 years old. Can you tell me what type of hardware you have? You can take the serial number and go to www.dell.com/support and put the serial number in. It will give you a model number. If you could post that model number I can help you determine what versions are compatible.
Thank you,
Jay Kisne
RSA Netwitness Support Manager
2018-09-25 11:06 AM
Hello John,
Thank you for the prompt response.
So the hardware I am referring to here are SV2800 model BlueCoat Appliances. Yeah, they are rather old. And to be perfectly honest, this is my first foray into usage and functionality of these devices.
In addition to any information you can provide to me regarding the available software for this device, would you be able to send me any documentation on how the devices actually does what it does?
It seems that we are using an external cert authority, but these devices are not public facing, leading me to believe they are doing the traffic encrypt/decrypt process all unto themselves.
Steven Robbins (CMS/CTR)
Marketplace Security Engineer
Trend Micro Certified Professional
CMS Cybersecurity Integration Center (CCIC)
Information Security and Privacy Group (ISPG)
Centers for Medicare & Medicaid Services (CMS)
Office 443.316.5056 / Mobile 443.830.7611
Steven.robbins1@cms.hhs.gov
MSTEngineering@cms.hhs.gov
INFORMATION NOT RELEASABLE TO THE PUBLIC UNLESS AUTHORIZED BY LAW: This information has not been publicly disclosed and may be privileged and confidential. It is for internal government use only and must not be disseminated, distributed, or copied to persons not authorized to receive the information. Unauthorized disclosure may result in prosecution to the full extent of the law.
2018-09-25 11:25 AM
Steven,
I'm sorry to say but Netwitness no longer provides support for the old SSL interceptors. At this time we are sending everyone with questions about these devices to Blue Coat directly as we no longer sell or support them. These are not actual RSA Netwitness appliances but are pieces of hardware used for SSL traffic decryption only, as far as I know. We use to sell them as a third party vendor for Blue Coat. Considering their age I honestly don't know what version of firmware they are still able to run.
It has been so long since we've had to send any customers to them that I no longer have the support number that we use to give out. I am sorry and wish I could provide you with further information.
Jay Kisner
RSA Netwitness Support Manager