I am unable to manually assign ANC policies to hosts in the Secure Network Analytics Host Report section. When I inspect a specific host and try to assign one at the Host Summary Pane, I am receiving this error: We encountered an error from one or mo...
Welcome to the Security Analytics Board!
Please take a look at our Stealthwatch Information Hub and our Stealthwatch Use Cases.Forum Posts
Resolved! Error when accessing SMC
Error " The authentication service was unable to fulfill your request. If this problem persists, contact your administrator."
What is the best method for getting security events and analytics into an external SIEM (Splunk)? Thank youPhilip
We wanted to integrate our IBM SOAR with Cisco Threat Grid and it requested for an API key. From where we can get the key and also does we need license to integrate with Cisco Threat Grid?
思科SNA原先叫(Stealthwatch)设备,将语言切换到中文时,进入流量搜索模块,时间范围选择自定义时选择好时间范围后无法搜索将语言切换为英文后可以正常进行搜索原因是英文语言的搜索是这样样子的(11/07/2023 02:36 PM - 12/13/2023 02:41 PM)而中文语言搜索是这样的(11/02/2023 02:39 PM.....12/13/2023 02:44 PM)中间是.....系统无法识别,所以就无法在中文语言的环境下进行搜索
Hi, I need an advice. I want to be allarmed when one host eirher consume bandwith above 30 Mbps, I made new policy in the "Core events" - single host policy but it seems doesn't work What am I doing wrong?
is there a way to reset all of the counters/data through the GUI in Stealthwatch? i have a different setup and want to see data only AFTER the new settings so that i can tell if it is actually working like it is supposed to.
Resolved! Stealthwatch SNA RRT SRT response times
Has anyone been able to get the response times values in Stealthwatch / SNA to populate? We're various Cisco switches and routers exporting netflow (most relevant here are Ciscp 3850 (16.9.5) and 9300 (16.9.7) and have followed the netflow config gu...
Anyone have idea what to do with this Vulnrability reported by a Vulscan service.this is for a cisco CBS 350 series switchthe switch is upgraded to latest frimware exist on cisco website , any idea how to fix this issue with open ssh7.4Summaryopenssh...
Has anyone tried to use the maxmind script provided here https://developer.cisco.com/codeexchange/github/repo/CiscoSE/MaxmindAsnImporter/ to import maxmind data into 7.4.1? Im using an instance in Dcloud and i get localhost MaxmindAsnImporter-maste...
Hi team, Differences have been observed between talos and SNA when they detect the country of origin of the traffic. For example, this IP 185[.]233[.]19[.]223 is from Pakistan and source host group from United States (according to SNA) but in talos i...
Hello,is there anyone who has already worked on the stealthwatch solution version 7.3.2.I am unable to find the option desktop client. how can i download the java client or "desktop client" since i can't find it on the top right of the screen, see th...
Hello, i have got issue about FMC have not alerts if i try to scan from the internal network? and also when i scan the internal network that is thier network packet passes through the firewall results in source ip address maps to other internal netwo...
Hello friends, I would like to update my Cisco Secure Network Analytics Virtual Manager, which is currently on version 7.3.1. However, I understand that Cisco Secure Network Analytics Virtual Manager 7.4.2 (the latest recommended version) is not comp...
