Novell SENTINEL 6.1 SP2 - INSTALLATION GUIDE 02-2010 Installation Manual page 152
Hide thumbs
Also See for SENTINEL 6.1 SP2 - INSTALLATION GUIDE 02-2010:
- Reference manual (232 pages)
Table of Contents
Advertisement
6 What reports do you want out of the system? This is important to ensure that your Collectors
collect the correct data to be passed to the Sentinel database.
6a _______________________________________________________
6b _______________________________________________________
6c _______________________________________________________
6d _______________________________________________________
6e _______________________________________________________
6f _______________________________________________________
7 What source devices do you want to collect data from (IDS, HIDS, Routers, Firewalls and so
on), event rate (EPS – events per second), versions, connection methods, platforms and
patches?
Device (mfr/
model)
Can you provide sample data of what you want the Sentinel Collectors to collect and parse?
Sentinel can be configured to provide the desired output based on the information provided
here.
8 What security model/standards exist at your site?
What is your stance on local accounts versus domain authentication?
9 What is the required data retention in terms of days?
10 Based on the data retention information and EPS, what disk size will you be using? Use 500 to
800 bytes/event for sizing estimates.
11 What event patterns do you want to identify in your data?
12 Does the current data available from your event sources support the event patterns you want to
detect, or will event enrichment using the mapping service be needed?
13 If the mapping service is needed, what is the source of the enrichment data, and what key will
be used to perform the mapping? How will the maps be kept up to date?
14 When a security or compliance violation is detected, what processes will be used to remediate?
152 Sentinel 6.1 Installation Guide
Event Rate
Version
(EPS)
For Windows with domain authentication, proper domain account settings must be
created to ensure that Sentinel can be installed.
For Solaris install, this is not applicable. However, Sentinel does not support NIS.
Connection
Platform
Method
Patches
Advertisement
Table of Contents
Related Manuals for Novell SENTINEL 6.1 SP2 - INSTALLATION GUIDE 02-2010
Related Products for Novell SENTINEL 6.1 SP2 - INSTALLATION GUIDE 02-2010
- NOVELL ZENWORKS LINUX MANAGEMENT 7.3 IR2 - ADMINISTRATION GUIDE 02-12-2010
- NOVELL APPARMOR 2.0.1 - ADMINISTRATION GUIDE 05-2008
- NOVELL EDIRECTORY 8.8 - GUIDE 09-2006
- NOVELL IFOLDER 3.X - SECURITY ADMINISTRATOR GUIDE 08-15-2006
- NOVELL INTELLISYNC MOBILE SUITE 7.0 - SECURE GATEWAY ADMINISTRATOR GUIDE 04-2006
- NOVELL LINUX ENTERPRISE DESKTOP 10 SP1 - START UP GUIDE 03-15-2007
- NOVELL LINUX ENTERPRISE SERVER 10 - START-UP GUIDE 06-12-2006
- NOVELL LINUX ENTERPRISE SERVER 10 SP2 - STARTUP GUIDE 05-08-2008
- NOVELL LINUX ENTERPRISE SERVER 10 SP2 - STORAGE ADMINISTRATION GUIDE 05-15-2009
- NOVELL OPEN ENTERPRISE SERVER 2 SP2 - LAB GUIDE 01-19-2010
- NOVELL PLATESPIN ORCHESTRATE 2.0.2 - HIGH AVAILABILITY CONFIGURATION GUIDE 06-17-2009
- NOVELL PRIVILEGED USER MANAGER 2.2.1 - ADMINISTRATION GUIDE 03-31-2010
- NOVELL SERVER CONSOLIDATION MIGRATION TOOLKIT 1.2 - ADMINISTRATION GUIDE 09-2007
- NOVELL ZENWORKS APPLICATION VIRTUALIZATION 8.0 - INTEGRATION AND STREAMING GUIDE 05-07-2010
- NOVELL ZENWORKS LINUX MANAGEMENT 7.2 IR2 - ADMINISTRATION GUIDE 09-25-2008
- NOVELL ZENWORKS NETWORK ACCESS CONTROL 5.0 - INSTALLATION GUIDE 09-22-2008