AnsweredAssumed Answered

UDS development in RSA SA

Question asked by RSA Admin Employee on Sep 2, 2015
Latest reply on Sep 10, 2015 by RSA Admin

Hi Folks,

 

This is the first time I am trying to develop an UDS for Trend Micro Vulnerability protection manager device

 

Steps which I followed are

1. Developing the parser using ESI tool

2.Extracting the ESI package to devicename.ini and devicenamemsg.xml files

3. Uploading the files to /etc/netwitness/ng/envision/etc/devices of log decoder

4.Adding key description for the key to index-concentrator-custom.xml file

5.Editing the table-map-custom.xml to change the variable and to add entries that do not exist in the file.

 

Do I need to follow any other step?

 

Also I have doubts in editing index file and the table-map file.

 

Can anyone help me on this?

 

 

Thanks,

Ajay

Outcomes