Log Collection SDEE: Step 1: Configure SDEE Event Sources in Security Analytics

Document created by RSA Information Design and Development on Jul 29, 2016
Version 1Show Document
  • View in full screen mode
 

After completing this procedure, you will have...

  • Configured an SDEE event source.
  • Modified an SDEE event source.

Return to Procedures

Configure an SDEE Event Source

  1. In the Security Analytics menu, select Administration >Services.
  2. In the Services grid, select a Log Collector service.
  3. Click AdvcdExpandBtn.PNGunder Actions and select View > Config.
  4. In the Event Sources tab, select SDEE/Config  from the drop-down menu.
    The Event Categories panel displays the SDEE event sources that are configured, if any.
  5. In the Event Categories panel toolbar, click Icon-Add.png.
    SDEEAddType.png
    If you do not see any event source types in this list, you did not load the content that you get from Customer Care as part of the Log Collector upgrade to this release.
  6. Select an event source type (for example, ciscoids) and click OK.
    The newly added event source type is displayed in the Event Categories panel.
  7. Select the new type in the Event Categories panel and click Icon-Add.png in the Sources toolbar.
    The Add Source dialog is displayed.
  8. Add a Name, Username, Address, and Password, and modify any other parameters that require changes, and click OK.
    SDEEAddSource.PNG
    The new event source is displayed in the list.

Modify an SDEE Event Source

  1. In the Security Analytics menu, select Administration >Services.
  2. In the Services grid, select a Log Collector service.
  3. Click AdvcdExpandBtn.PNGunder Actions and select View > Config.
  4. In the Event Sources tab, select SDEE/Config from the drop-down menu.
  5. Select an event source type in the Event Categories panel.
  6. In the Sources panel, select an event source and click icon-edit.png.
    The Edit Source dialog is displayed.
    SDEEEditSource.png
  7. Modify the parameters that require changes and click OK.
  8. Security Analytics applies the parameter changes to the selected event source.

Parameters

Reference - SDEE Event Source Configuration Parameters

You are here: SDEE Collection Configuration Guide > Procedures > Log Collection SDEE: Step 1: Configure SDEE Event Sources in Security Analytics

Attachments

    Outcomes