manualshive.com logo in svg

Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1, Release Note

The Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1 is a comprehensive manual designed to assist users in effectively responding to security threats. Download the free Release Note manual from 88.208.23.73:8080 to access detailed guidance on handling offense investigations and enhancing security measures.

Share
Download
background image

530-025628-01

6

STRM Log Management Release Notes

Deleting a False Positive Building Block Value No Longer Causes Error

Previously, if you attempted to edit the User-BB-FalsePositive: User Defined False 
Positive Tunings Building Block to edit any of the configured values within the 
Building Block, the following error message appeared 

Invalid category id

This no longer occurs. 

Multiple Reports No Longer Generate From Single Template When Reports 
are Shared

When you created a new report using the Report Wizard, you can generate the 
report by selecting the

 Would you like to run the report now? 

check box in the 

report wizard or request the completed report template to generate using the 
Reports Template interface. Previously, if the report was shared with other users, 
both options may have resulted in the generation of multiple reports appearing in 
the Generated Reports interface with Admin as the listed owner. This no longer 
occurs. 

Now Able to Add 200 CIDRS for a Network Object

Previously, the limit of CIDR range(s) you could add to the network object was 70. 
If you attempted to add more than 70 CIDR range(s), an error appeared. In STRM 
Log Management 2008.2, the limit of CIDR ranges you can add is approximately 
200, depending on the data on your system. 

Now Able to Apply Any IP Filter When Searching for Events

Previously, when you attempted to filter in the Event Viewer using the Any IP filter 
option, invalid results appears. Now, in STRM Log Management 2008.2, this no 
longer occurs and valid search results appear. 

Now Able to Filter on Device Type Using Right-Click Option in Aggregate 
Display

Using the Display drop-down list box in the Event Viewer, you are able to view 
events using one of the available aggregate options. Previously, if you selected the 
Device Type option in the Display drop-down list box, you were not able to access 
the Filter menu using the right mouse button (right-click) for the Device Type 
column. This no longer occurs and the Filter menu is available. 

Now Able to Use Exclamation Point (!) In LDAP Authentication Passwords

Previously, when defining a password for your LDAP authentication, if you entered 
an exclamation point (!) as part of your password, the password was rejected. 
Exclamation points (!) are now supported. 

Now Able to Use Same IP Address for Off-Site Source and Target

Previously, when configuring off-site source and target in the deployment editor, an 
error appeared if you attempted to use the same IP address for the source and 
target. This no longer occurs. 

Summary of Contents for SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1

Page 1: ...ager Log Management Only STRM LM provides a comprehensive log management solution for organizations that want to implement a distributed log management solution to collect archive and analyze network...

Page 2: ...ch system in your deployment New Device Extensions Functionality You can now modify how a DSM parses logs For example you can use a device extension to detect an event that has missing or incorrect fi...

Page 3: ...re information on Release 2008 2 refer to the on line documentation STRM Log Management Installation Guide STRM Log Management Administration Guide STRM Log Management Users Guide STRM Log Management...

Page 4: ...a device requires STRM to forward logs through NSM Note For STRM to correctly process logs from SA and IC the logs should be sent from the devices in WELF format To enable WELF format on the device Un...

Page 5: ...if your license key expired and you uploaded a new license key STRM Log Management did not provide the option to deploy the new license key Changing the Authentication to STRM Log Management Authentic...

Page 6: ...nagement 2008 2 the limit of CIDR ranges you can add is approximately 200 depending on the data on your system Now Able to Apply Any IP Filter When Searching for Events Previously when you attempted t...

Page 7: ...nt 2008 2 this directory structure is properly created Events Appear in Event Viewer and Flows in Flow Viewer After June 30 2008 The Event Correlation Engine license expires on 30 June 2008 This licen...

Page 8: ...e configuration file and restart services Step 1 Open the configuration file on the machine that uses the custom SSL key normally the Web Server console Step 1 Add the directory path to your custom SS...

Page 9: ...oller IC device may appear incorrectly as an Enterasys device Workaround Add the Infranet Controller device manually Infranet Controller Device Appears as Secure Access Device An auto discovered Infra...

Page 10: ...nfiguration change the event query service process restarts and may be temporarily unable to process event searches Workaround Wait between 2 and 3 minutes for the Event Viewer to finish restarting Th...

Page 11: ...per Networks Inc in the United States and other countries JUNOS and JUNOSe are trademarks of Juniper Networks Inc All other trademarks service marks registered trademarks or registered service marks a...

Reviews:

No comments

Related manuals for SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1

MACROMEDIA FLASH MEDIA SERVER 2-INSTALLING FLASH MEDIA SERVER... Manual preview
FLASH MEDIA SERVER 2-INSTALLING FLASH MEDIA SERVER...
Brand: MACROMEDIA Pages: 16
Avaya CPSEE_TSP500 User Manual preview
CPSEE_TSP500
Brand: Avaya Pages: 216
VESA DisplayPort User Manual preview
DisplayPort
Brand: VESA Pages: 18
Promise Technology PAM User Manual preview
PAM
Brand: Promise Technology Pages: 84
VBrick Systems Portal Server ETV v4.1 Admin Manual preview
Portal Server ETV v4.1
Brand: VBrick Systems Pages: 140
Sonifex D:Scribe User Handbook Manual preview
D:Scribe
Brand: Sonifex Pages: 68
Labelmaster Masterform 3.0 User Manual preview
Masterform 3.0
Brand: Labelmaster Pages: 81
Nikon DI series Manual (Install To Pc) preview
DI series
Brand: Nikon Pages: 12
Clickfree C6 Easy Imaging User Manual preview
C6 Easy Imaging
Brand: Clickfree Pages: 24
I.R.I.S. IRISSCAN 2 Getting Started Manual preview
IRISSCAN 2
Brand: I.R.I.S. Pages: 3
Lenovo ThinkCentre M58e (Portuguese) Manual Do Utilizador preview
ThinkCentre M58e
Brand: Lenovo Pages: 102
Lenovo ThinkCentre M58 (Korean) User Manual preview
ThinkCentre M58
Brand: Lenovo Pages: 92
Lenovo ThinkPad X301 Hardware Maintenance Manual preview
ThinkPad X301
Brand: Lenovo Pages: 154
Lenovo THINKPAD X32 (French) Setup Manual preview
THINKPAD X32
Brand: Lenovo Pages: 2
Lenovo THINKPAD X200S Specifications preview
THINKPAD X200S
Brand: Lenovo Pages: 4
Lenovo ThinkPad Z60t Series Hardware Maintenance Manual preview
ThinkPad Z60t Series
Brand: Lenovo Pages: 166
Lenovo ThinkPad X60 Tablet Hardware Maintenance Manual preview
ThinkPad X60 Tablet
Brand: Lenovo Pages: 206
Lenovo ThinkPad Edge E420 (Greek) preview
ThinkPad Edge E420
Brand: Lenovo Pages: 218

Brands by name

Popular brands

Load more brands