Add functionality to share, export and import 'saved searches', rules, filters and nodes.
I had a situation today where I had to open the "air" console to test my user to see If I would get an email message from the SEM. This need to be able to happen in the html console. I think a test button while you are setting up the email connector where you could enter a recipient email address and verify the email made…
We would like SEM to notify us using SMS Service.there is no SMS action .or at least add send http get or http post as a rule action.
It would be great if we were able to add and remove columns on the events screen. Maybe the default filters are set, but custom filter views can be updated. I am finding that I click on events in order to see specific fields. If I were able to customize the columns and add that field, the event list would be more…
We have an issue with some (not all) Windows 2008R2 agents that can not run agent code past 2020.4.1. Support has confirmed those nodes will have an issue upgrading past that version of the agent. Our internal case number was 907016. We have currently disabled automatic upgrades on the appliance to prevent them from trying…
Why not have out of the box correlation of events? Why do we have to build these? If you Event 4740 (locked out) why not include the logon type, logon failure codes, and logon session events? So all of the data is in one spot instead of digging around for it all? This is just one example. To be more usable, including…
Hi! I need to know if there is a way to take de NTP configuration in SEM with search string. Thanks a lot
It is currently not possible to execute a program as an action when a rule is triggered. We desperately need this feature along with an execute as option.
Case # - 00868985 Velocloud New Connector Request Velocloud SDWAN edge devices will log to SEM but show up under Unmatched Foundry Data or BrocadeIronSeries - MOST of it is under "unmatched" which is undesirable. attached is the syslog.1633720596.tar.gz export from the SEM and the 10.0.2.254.log.gz is a raw log to…
Cisco are spending allot of effort on getting SecureX as their single pane of glass, would be nice if we could pull the data from SecureX into SEM. Optionally a connect for each of the online management systems Cisco Secure Endpoint ( formally AMP ) Cisco Umbrella Cisco Stealthwatch Cisco SMA Cisco Cloud Lock
It looks like you're new here. Sign in or register to get started.