Académique Documents
Professionnel Documents
Culture Documents
ArcSight
. ArcSight
6.4.5.77.5.5 . 3504
. CentOS 7.3
3504 .
-1-1
ArcSight
:0
ArcSight5.3
1-1-
Device Monitoring
AntiVirus
o
o
o
o
o
CrossDevice
o
o
o
o
o
o
o
o
o
o
o
o
o
o
o
o
Database
o Database Errors and Warnings
Firewall
o Denied Connections by Address
o Denied Connections by Port
o Denied Connections per Hour
IDS-IPS
o Alert Counts by Device
o Alert Counts by Port
o
o
o
o
o
o
o
Identity Management
o Connection Counts by User
Network
o
o
o
o
o
o
Operating System
o Login Errors by User
o User Administration
VPN
o
o
o
o
o
2-1-
Authentication Errors
Connection Counts by User
Connections Accepted by Address
Connections Denied by Address
Connections Denied by Hour
Foundation
Configuration Monitoring
o
o
o
o
o
o
o
o
o
o
o
o
o
Device Misconfigurations
Password Changes
Vulnerability Scanner Logs by Host
Vulnerability Scanner Logs by Vulnerability
Intrusion Monitoring
Netflow Monitoring
o
o
o
o
o
Network Monitoring
o
o
o
o
o
o
o
3-1-
SANS Top 5
Account Modification
Password Changes
User Account Creations
User Account Deletions
User Account Modifications