Hi,Is there any procedure to integrate Active Directory with Stealthwatch (SMC)?Cisco Stealthwatch Management Console v 6.10 Best regardsIvan
Welcome to the Security Analytics Board!
Please take a look at our Stealthwatch Information Hub and our Stealthwatch Use Cases.Forum Posts
Hello i find a Update Guide about stealthwatch varsion 6.10.1 on cisco, i want to update stealthwatch from 6.9 to 6.10.1,but i can't find the update file to download. i try to find it on lancope.flexnetoperations.com,but only version 6.9. where can i...
Hi all,My C9500 switch can send NetFlow v9 to Flow collecter as I can see its data flow in SMC but not for the interface status.I have 2 Palo Alto firewalls that are sending NetFlow to the FC as well but I can see their interface status in SMC. Belo...
Hi Team, Someone knows if is possible that stealthwatch show a HOST NAME next to the HOST ADDRESS (IP) The users works fine between ise and LDAP, but i can´t see in Stealthwatch GUI the HOST NAME (LDAP).I attach an example of the GUI as I see Steal...
Resolved! Stealthwatch DB Backup
Getting a successful backup via SMB Fileshare is becoming a challenge. I don't see anywhere that there are other options - sftp/scp, etc... Has development looked at enhancements? We are running 7.2 Thanks,Bob
The SMC remains in the Installing state. It has been in the same state for more than two days. I restarted the SMC but still with that problem, in the log file I do not see that the update process has begun. Log:Mon Jan 13 2020 12:20:01 GMT-0600 (hor...
I'm trying to setup netflow export on my Check Point firewall to my Stealthwatch flow collector, but it seems that the data isn't being accepted because the exported records are missing the mandatory "ipv4 tos" key value. I used https://configurenet...
Does Cisco Stealthwatch Flowsensor support forwarding IPFIX flows to Third-Party flow analytics tool?If it is possible, then where can I get Stealthwatch IPFIX "Private Enterprise Element Definition" to decode flows on the recipient end.I was success...
I am trying to make sure I got the right config.looking at thishttps://www.cisco.com/c/dam/en/us/td/docs/security/stealthwatch/netflow/config-trouble-netflow-stealth.pdfI was looking at the 9300 config and it shows that netflow is enabled both inboun...
Hello, Is there a limitations on the number of read only users that can be created on stealthwatch, I have a requirement fo 30+ user accounts that are needed to be created.
Hi Everyone,suddenly when I has restored my config from VE edition to X210 edition and I restart the appliance, the smc login page is not came out.The config from VE edition still coming when I restore image and restore default config using sysadmin ...
I have an SMC, Flow Collector, and Flow Sensor VMs deployed. They are all on version 7.0. When I initially added the Flow Collector and Flow Sensor VMs to SMC I accepted the default self-signed SMC cert. I'm going to be replacing the SMC identity cer...
Hi Guys We've got Stealthwatch Enterprise up and running and so far I have to say I'm really liking it but we are having some issues with flow matching which results in a lot of traffic being picked up as being a new flow instead of being part of nor...
Hi!I have a question, because I want to integrate StealthWatch with Cisco Threat Response, but one of the prerequisite is that the Stealtwatch version needs to be 7.1.2, Nevertheless when I go to https://lancope.flexnetoperations.com/ > Downloads>Upg...
Hello everyone.On the page "https://lancope.flexnetoperations.com/control/lncp/content?partnerContentId=Home", "Stealthwatch Release 7.1.19/23/2019-The 7.1.1 software release is temporarily unavailable for download. ".what should I do?
