Table of Contents
Advertisement
The Mapping tab allows you to:
Add new map definitions
Edit map definitions
Delete map definitions
Update map data
Mapping works together with the Referenced from Map Data Source setting for individual fields
under
Section 10.8, "Event Configuration," on page
range. The following are the default maps available:
AccountIdentity: Contains information about identities and the accounts associated with
them. The keys are UserName, UserDomain, and CustomerName (for MSSPs). This map is
populated from information in the Account and Identity tables in the Sentinel database.
Asset: Contains the data from the map data source file
automatically generated from asset data from Sentinel Database when an asset Collector is run.
This file can also be populated manually. The keys are PhysicalAssetName and CustomerName
(for MSSPs).
AssetToRegulation: Contains the data from the map data source file
AssetToRegulation.csv
CustomerHierarchy: Generally used for Managed Security Service Providers (MSSPs). This
file can be used to organize customers into a four-level hierarchy. It contains data from the
customerhierachy.csv
IpToCountry: Contains the data from the
must be populated manually.
IsExploitWatchlist: Contains the data from the
file. (vulnerabilities and threats). The
from Advisor and Vulnerability data from the Sentinel Database when either an Advisor feed is
completed or a vulnerability Collector is run. The keys are IP, AttackName, DeviceName, and
CustomerName (for MSSPs).
To view maps in the GUI:
1 Navigate to the Admin tab and select Map Data Configuration from the Navigation pane or
click the Map Data Configuration button
240 Sentinel 6.1 Rapid Deployment User Guide
249. You can map by using a string or number
. This file must be populated manually.
. This file must be populated manually. The key is
IpToCountry.csv
exploitDetection.csv
exploitDetection.csv
.
. The
asset.csv
asset.csv
CustomerName
map data source file. This file
map data source
file is automatically generated
is
.
Advertisement
Table of Contents
Related Manuals for Novell SENTINEL RAPID DEPLOYMENT 6.1 - 12-2009
Related Products for Novell SENTINEL RAPID DEPLOYMENT 6.1 - 12-2009
- NOVELL SENTINEL 6.1 SP1 HOTFIX 2 - READ ME 9-2009
- NOVELL SENTINEL 6.1.1.0 - README
- NOVELL SENTINEL RAPID DEPLOYMENT 6.1 - 06-15-2009
- NOVELL NETWARE 6-DOCUMENTATION
- NOVELL ZENWORKS PATCH MANAGEMENT 6.3 - S
- NOVELL ZENWORKS PATCH MANAGEMENT 6.4 - S
- NOVELL ZENWORKS PATCH MANAGEMENT 6.4 - AGENT
- Novell NETWARE 6
- Novell SENTINEL 6.1 SP2
- NOVELL SENTINEL RAPID DEPLOYMENT 6.1 - INSTALLATION GUIDE 12-2009
- NOVELL ZENWORKS PATCH MANAGEMENT 6.4 SP2 - SERVER
- Novell 3.6 05-2008
- Novell Access Manager 3.1 SP 1
- Novell Access Manager 3.1 SP 2
- NOVELL ACCESS MANAGER 3.1 SP1 - AGENT GUIDE
- NOVELL ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER