Hi Team, I successfully integrated my ISE (ver 3.0.0.458) and Stealthwatch (ver 7.3.0) with pxgrid, also I can see the 802.1x clients live session on ISE (ip addr 10.40.5.81). And local DNS server works well on stealthwatch ,because stealthwatch's F...
Welcome to the Security Analytics Board!
Please take a look at our Stealthwatch Information Hub and our Stealthwatch Use Cases.Forum Posts
Hi guys; I currently have a stealthwatch implemented on a client but the SMC server cannot show the trend collection flow. Could someone tell me what I could review to solve this issue?
Currently doing a project about DDoS attacks on the 5506 and cant figure out why UDP has some sort of output limit while TCP don't.??
We are running the version 7.3.1 of Cisco Stealthwatch onPremise.
I see that with version 7 of CSNA there are enhanced alert suppression capabilities - but it looks like it's API-based Any insight as to whether or not configuration of these enhanced alert suppression options will be made available via the WebUI of ...
Hi All I have gone through the initial setup for Stealthwatch Management Console Appliance: - CIMC IP Address - Management IP Address - Changed the sysadmin password - Changed the root password I can ping the device but when I HTTPS to it, it s...
Resolved! stealthwatch audit log forwarding
What is the difference between audit log destination on SMC appliance admin page and by adding syslog server using desktop client because we can see that using appliance administration interface syslog forwarding is compulsory over TLS. We need to ad...
Resolved! Stealthwatch TACACS
I would like to use TACACS for logging into Stealthwatch's webUI. Per the user guide, I added ISE servers as authentication servers in the Stealthwatch Management Console. Also, I added the Stealthwatch server as a network device into ISE and confi...
https://developer.cisco.com/docs/stealthwatch/cloud/#!stealthwatch-cloud-api-version-3 When you pull back an observation, the source id of the object is what? I assumed it was a hostname ID, but that doesn't seem to line up. I said that because it ...
Hello I have been trying to install Stealthwatch Management Console, VCE2000 with high end specs (Better than the one suggested). The installation goes through just fine, yet when I login to GUI for the first time using lan411cope password it takes ...
I can't login to SMC GUI. I can login to CLI using default root username and password. How to reset GUI admin password? Thanks
Hi!I received this error after upgrade (when try to make a test email send). SMTP address is correct in my configuration.SMTP Relay Address doesn't exist. com.lancope.sws.config.response.action.ResponseActionException: SMTP Relay Address doesn't exi...
My appliances are currently on version 7.0.2. The latest version is 7.1.3. Can I go directly to 7.1.3 or do I need to upgrade in sequential order from 7.1.1 -> 7.1.2 then 7.1.3? Also do I still need to upgrade the appliance in this same order: Flo...
Does anyone knows how can I clear some space on the /lancope/var directory? Im currently upgrading my VMs Yesterday I did the upgrade from 7.1.2 to 7.2.1 and today when trying to upgrade from version 7.2.1 to 7.3.2. im getting the following message: ...
Followed the instructions to set up the UDP director and it does not appear in the Central Configuration page. Removed it and added again and it still does not appear. Logged a tac case, but any ideas would be appreciated.
