How to Turn off Threat Scoring to enhance system performance in RSA Web Threat Detection 5.0
RSA Product Set: Web Threat Detection RSA Product/Service Type: Forensics RSA Version/Condition: 5.0 Platform: Linux O/S Version: Red Hat Enterprise Linux 6.x
A customer may ask how to turn off the threat scoring to enhance performance.
Turn off scoring – Method 1 Disable Scoring (Recommended to do this first, and evaluate for performance benefit) Go to SilverCat -> SilverSurfer; see sleuth*ThreatScores Enabled: ON
Edit the Silversurfer and go through each sleuth*ThreatScores and uncheck ‘enabled:’ Save and push the change
Method 2- Delete the Pools Recommended to perform after Method 1 for additional performance benefit Note that the scoring pools will still exist so as an alternative or additional way to stop scoring you can do the above and also delete the Pools, see screenshot attached. WARNING Except DO NOT TURN OFF the Early Pool this is required for GUID User Mapping.
Note: Either method 1 or 2 alone would stop scoring.