Services Config View - Integration Tab

This topic introduces the features and functions of the Integration tab in the Administration Services Config view for Malware analysis. This tab provides a way to test connections and enable Community scoring by registering the Malware Analysis service. An administrator can test the connection to cloud.netwitness.com and to a core service that was configured for continuous scan.

Workflow

netwitness_113_malware_configworkflow_step6.png

What do you want to do?

Role I Want to... Show me how
Administrator Configure General Malware Analysis Settings Configure General Malware Analysis Settings
Administrator Configure Indicators of Compromise Configure Indicators of Compromise

Administrator

Configure Auditing on Malware Analysis Host

(Optional) Configure Auditing on Malware Analysis Host

Administrator Configure Hash Filter (Optional) Configure Hash Filter

Administrator

Configure Installed Anti virus Vendor

Configure Installed Antivirus Vendors

Administrator Configure Malware Analysis Proxy Settings (Optional) Configure Malware Analysis Proxy Settings

Administrator

Register a TreadGRID API Key

(Optional) Register for a ThreatGRID API Key

Administrator Enable Community Analysis* Enable Community Analysis

*You can perform this task in the current view

Related Topic

Basic Setup

Quick Look

The following figure is an example of the Integration tab.

122_IntegrationTab_1222.png

1 Displays the Integration Tab.

Features

This tab has two sections: NetWitness Cloud Connection Test and Registration and Continuous Scan Connection Test. The following table describes the features.

Feature Description
NetWitness Cloud Connection Test and Registration
button

Clicking this button tests for an active connection to cloud.netwitness.com. NetWitness tests communications with the site and checks Proxy settings. A valid connection is required in order to register with the Community Service.

Company Name

This is the name of your company. This is a required field.

Contact Email

This is the contact email. This is a required field.

Internal EMC Use Only Check box

This is an optional field. EMC customers, salespersons, or demo users should check this option to ensure that their requests do not use bandwidth on the production server. When the box is checked the following warning is displayed:

Checking this box may cause a less robust performance because the production server isn't being used.

Register button

Clicking the Register button completes registration if all required fields are filled in. The Register button becomes the Update button after registration is complete.

Update button

The Update button is displayed after registration is complete.

Continuous Scan Connection
Test button

Clicking this button initiates a check to verify that the Malware Analysis service can connect to the Core service selected for continuous scanning (the Source Host, Source Port, Username, and User Password as specified in the General tab).