|Applies To||RSA Product Set: NetWitness Platform|
RSA Product/Service Type: NetWitness Core services
RSA Version/Condition: 10.6.x, 11.x
|Issue||How to add custom meta keys in RSA NetWitness?|
What is the process of adding custom language keys in RSA NetWitness?
|Tasks||In RSA NetWitness, the default configuration of meta keys is stored in the index-<service>.xml files (for example, index-concentrator.xml) on the NetWitness appliances.|
The contents of these default files shouldn't be manually changed as a new version of these files may be deployed during version upgrades.
Beginning from RSA NetWitness 10.0 a custom XML file, index-<service>-custom.xml (for example, index-concentrator-custom.xml) can be created in the same directory as the default file.
The custom XML file will not be modified or overwritten during a version upgrade.
Customization changes of the default settings, or adding new custom meta keys should be added to the custom XML file.
|Resolution||How to add custom meta keys in RSA NetWitness Platform|
Changes to default meta keys' configuration and the addition of new custom meta keys is made to the custom XML file, index-<service>-custom.xml which will be in the /var/netwitness/ng directory.
Decoder service has index-decoder-custom.xml
Log Decoder service has index-logdecoder-custom.xml
Concentrator service has index-concentrator-custom.xml
|Legacy Article ID||a63114|