Solution Packs; Components Of A Solution Pack - Novell SENTINEL 6.1 SP2 - 02-2010 User Manual

Solution Packs

1 5
 Section 15.1, "Solution Packs," on page 331
Section 15.2, "Solution Manager," on page 334

Section 15.3, "Managing Solution Packs," on page 336

 Section 15.4, "Solution Designer," on page 354
Section 15.5, "Deploying an Edited Solution Pack," on page 364

15.1 Solution Packs
Solution Packs allow Novell, partners, and customers to create and easily manage solutions to
specific business problems. They provide a framework within which sets of content can be packaged
into controls, each of which is designed to enforce a specific business or technical policy. The
control can use any of the detection, filtering, alerting, and response features of Sentinel, as well as
provide documentation on control status and enforcement. By managing the set of content as a unit
within the control, the Solution Pack solves dependency problems and simplifies implementation.
Controls within a Solution Pack can include the following types of content:
 Correlation Rule Deployments, including deployment status and associated Correlation Rules,
Correlation Actions, including JavaScript plugins and Integrators, and Dynamic Lists
 Reports
iTRAC Workflows, including associated Roles

Event enrichment, including map definitions and event metatag configuration

 Other associated files added when the Solution Pack is created, such as documentation,
example report PDFs, or sample map files.
Although Solution Packs have many uses, one is to package content related to governance and
regulatory compliance into a comprehensible and easily enforceable framework that is easy to
deploy. Novell and its partners will offer and extend Solution Packs around such regulations or other
customer needs.
Solution Packs are created with Solution Designer application. Using this tool, a user creates the
Solution Pack, associated controls and documentation (including implementation and testing steps),
and then associates Sentinel content with each control. The entire package is then exported as a ZIP
file.
The ZIP file containing the Solution Pack is imported and deployed into an existing Sentinel system
using the Solution Manager in the Sentinel Control Center. The Solution Manager displays
implementation and testing steps in the Solution Pack and tracks the status of each control. At any
time, users can generate a detailed document with implementation status for each control.

15.1.1 Components of a Solution Pack

Solution Packs consist of Categories, Controls, Content and Content Groups. These components are
represented in a hierarchy. The following image depicts the hierarchy in a Solution Pack:
15
Solution Packs 331