Archer Integ: RSA Archer Integration

Document created by RSA Information Design and Development on Oct 11, 2017Last modified by RSA Information Design and Development on Sep 12, 2018
Version 12Show Document
  • Comment0
  • View in full screen mode
  

Administrators can integrate RSA NetWitness Platform with RSA Archer® Cyber Incident & Breach Response to send alerts and incidents from NetWitness Platform to Archer for incident management and remediation. This guide provides a high-level workflow for configuring this integration.

Note: When you upgrade from Security Analytics 10.6.5 to NetWitness Platform 11.x, the RSA Archer® Cyber Incident & Breach Response integration is no valid, and must be re-configured.

The following table list the NetWitness Platform 11.x integration options with RSA Archer® Cyber Incident & Breach Response Version 1.3.1.2.

                                 
RSA Archer® Cyber Incident & Breach ResponseVersionNetWitness Platform 11.x IntegrationReference
1.3.1.2Event Stream Analysis (ESA)

See "Configure Event Stream Analysis for Integration with RSA Archer® Cyber Incident & Breach Response" section.

1.3.1.2Reporting Engine (RE) See "Configure Reporting Engine for Integration with RSA Archer® Cyber Incident & Breach Response" section.
1.3.1.2Respond

See "Configure Respond for Integration with RSA Archer® Cyber Incident & Breach Response 1.3.1.2" section.

1.3.1.2Archer FeedsSee "RSA Archer Feeds" section.
You are here
Table of Contents > RSA Archer Integration

Attachments

    Outcomes