Article Content
Article Number | 000032786 |
Applies To | RSA Product Set: Security Analytics RSA Product/Service Type: Health & Wellness, Event Stream Analysis (ESA), Security Analytics UI RSA Version: 10.6.0.0 |
Issue | Once StreamEnabled value is set to true (default value is false) for enabling Capture Time Ordering in ESA appliance, (Administration > Services > ESA > Explore > com.rsa.netwitness.esa > Workflow > Source > nextgenAggregationSource > StreamEnabled) the deployed ESA Rule Memory Utilization shows 0 in Health and Wellness. AverageBytesPerMeta in Administration > Services > ESA > Explore > com.rsa.netwitness.esa > CEP > Engine > cepEngine always shows 0 when StreamEnabled is true. |
Resolution | This issue has been addressed in Security Analytics 10.6.0.1. |
Workaround | Disable Capture Time Ordering in ESA.
|
Notes | For more information on Capture Time Ordering, refer to the Security Analytics 10.6 User Guide. |