|Applies To||RSA Product Set: Security Analytics|
RSA Product/Service Type: Health & Wellness, Event Stream Analysis (ESA), Security Analytics UI
RSA Version: 10.6.0.0
|Issue||Once StreamEnabled value is set to true (default value is false) for enabling Capture Time Ordering in ESA appliance, (Administration > Services > ESA > Explore > com.rsa.netwitness.esa > Workflow > Source > nextgenAggregationSource > StreamEnabled) the deployed ESA Rule Memory Utilization shows 0 in Health and Wellness.|
AverageBytesPerMeta in Administration > Services > ESA > Explore > com.rsa.netwitness.esa > CEP > Engine > cepEngine always shows 0 when StreamEnabled is true.
|Resolution||This issue has been addressed in Security Analytics 10.6.0.1.|
|Workaround||Disable Capture Time Ordering in ESA.|
|Notes||For more information on Capture Time Ordering, refer to the Security Analytics 10.6 User Guide.|