Skip navigation

Log in to create and rate content, and to follow, bookmark, and share content with other members.

000030588 - Unable to delete an event source monitoring threshold for a policy in RSA Security Analytics 10.5.0.0

Document created by RSA Customer Support

on Jun 14, 2016•Last modified by RSA Customer Support

on Apr 22, 2017

Version 3Show Document

Like • Show 0 Likes0
Comment • 0
View in full screen mode

Article Content

Article Number	000030588
Applies To	RSA Product Set: Security Analytics RSA Product/Service Type: Security Analytics UI, Event Source Monitoring RSA Version/Condition: 10.5.0.0 Platform: CentOS O/S Version: EL6
Issue	On the Administration -> Event Source -> Monitoring page in the Security Analytics UI, if any policy has rule or threshold added to it once then it is not possible to delete that rule. Attempting to delete the rule displays the following error: The threshold values cannot be unset, If you want to disable the policy, please uncheck the Enable checkbox.
Resolution	This issue has been resolved in Security Analytics 10.5.0.1.
Workaround	As a workaround for the issue, disable the policy or set both the low and high thresholds to 0 events in 5 minutes (5 minutes is the minimum duration for thresholds).

Attachments

Outcomes

0 Comments

Recommended Content

Incoming Links

000030419 - RSA Security Analytics 10.5.0.0 Known Issues Master List