RSA Admin

Building coorrelations from the defaults

Discussion created by RSA Admin Employee on Jun 23, 2008
Latest reply on Jul 1, 2008 by RSA Admin

I've been building some correlation rules from copies of the default rules in 3.7, then tweaking them to fit our environment.


Has anyone had any experiences doing this?   Good/Bad/Ugly ?