I have integrated 150 Servers Using winrm HTTP Integration Technique
provided by RSA in documentation, but now i want to integrate AD with
winrm HTTPS, while going through the Documentation i found this -" WinRM
Diagnostic Tool " But But But... Is th...
Hi All, It would be great if someone share some good Use cases or Rules
which i can build or use to track Firewall and Proxy Traffic, which
helps me show my client that following are the malicious activity
happening through their network. I have depl...
Hi ,I need to create a Rule where i can track the Consecutive Remote
Desktop activity, If a user Login to a Server using RDP and
Consecutively logs into a another server from that same server using a
RDP again, means "Remote session from a server and...
In our Project a completely virtual Security Analatics environment is
deployed,/var/log partition in VLC get full each time and whole thing
gets stuck, not sure why. I am new to Security Analytics and followed
following two article but var/log still ...
Hi all, i am preparing for RSA Security Analytics Certified
administrator exam i need to know that how long the certification is
valid for? 050-103-CARSASA01
this is what I want to achieve------A cisco asa is sending logs to
syslog server, now i want to collect those logs from that syslog server,
and i tried your templet but not able to see any logs on my vlc. VLC IP:
10.201.12.80ASA IP: 10.201.3.103 whic...
only other syslogs from different event sources... like cyberArk i have
also tested cyberark logs those are also syslog types... 14:52:35.010819
IP (tos 0x0, ttl 64, id 50323, offset 0, flags [DF], proto TCP (6),
length 40)st-rsa-vlc.hmgt.net.shell >...
David Waugh Hi David, I am using Rsyslog v.7 and i am trying to
forwared cisco asa logs from our syslog server to VLC.VLC IP:
10.201.12.80ASA IP: 10.201.3.103 -------------------------------is this
correct ?------------------------$template
NWLDfmt,...
Hi Dave i am trying to forward my cisco ASA logs from our Syslog server,
as it is getting logs from ASA, i tried below config in my syslog.conf
but i am not able to achieve it. VLC IP: 10.201.12.80ASA IP:
10.201.3.103 -------------------------------i...
