This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

RSA enVision® Discussions

Browse the RSA enVision discussion board to get product help and collaborate with other users of RSA enVision.
RSAAdmin
Beginner
Beginner
‎2012-05-09 05:24 PM

Correlation Classes - What's the point?

I am wondering if there is any benefit to creating my own set of correlation classes as opposed to just using the ones built in. It seems you can only have one of four pre-defined types anyway (Security, Host, Network, Storage). I am just not even sure why this functionality exists.


If you have done anything interesting or useful with correlation classes I would certainly like to hear about it! Thank you!

0 Likes
Reply
2 Replies
RSAAdmin
Beginner
Beginner
‎2012-05-10 11:16 AM

I think they may have had some other intent when they were first introduced a long time ago, but you're right, they don't do much. I use them sheerly for organization purposes... like setting up folders in a file system. I create new classes based on groups or themes for my rules, just to make them easier to find when it comes time to put them into a view.
0 Likes
Reply
RSAAdmin
Beginner
Beginner
In response to RSAAdmin
‎2012-05-10 12:12 PM

Thanks, that is kind of what I thought. I created versions for our different companies, but I have not found them to be a huge benefit so far.
0 Likes
Reply
© 2020 RSA Security LLC or its affiliates.
All rights reserved.