Release Notes

What is in this guide
Introduction
- Overview
- Release Notes
Setup the Product
- What’s in this section
- System Requirements
- Prerequisites
- Install and Uninstall
- Start and Shutdown
- Connect to Server
- Backing up database
- License Details
- Get Started
Add Log Sources
- What’s in this section
- Adding Windows Devices
- Adding Syslog Devices
- Adding CEF devices
- Adding Other Devices
- Adding IBM iseries(AS400) devices
- Adding VMware(Exsi) devices
- Adding vCenter
- Adding Application Sources
- Adding AWS EC2 Windows instance
Configuring, and enabling logging/auditing in sources
- Enabling Microsoft Windows Firewall logging
- Enabling Hyper V logging
- Enabling IBM iSeries audit logs
- Enabling Stackato Logging
- Configuring McAfee solutions for analysis
- Configuring External Applications
- Configuring Scaler NSS
Configuring Syslog Service
- On a UNIX device
- On a Mac OS device
- On a HP-UX/Solaris/AIX device
- On a VMware
- On Arista Switches
- On Cisco Switches
- On HP Switches
- On Cisco devices
- On Cisco Firepower devices
- On Sonicwall devices
- On Juniper devices
- On PaloAlto devices
- On Fortinet devices
- On CheckPoint devices
- On NetScreen devices
- On Watchguard devices
- On Sophos devices
- On Cyberoam devices
- On Barracuda devices
- On Barracuda Web Application Firewall
- On Barracuda Email Security Gateway
- On Huawei Firewall devices
- On Malwarebytes devices
- On Meraki devices
- On FireEye devices
- On pfSense devices
- On Symantec DLP devices
- On Symantec Endpoint Protection devices
- On H3C devices
- On StormShield devices
- On F5 devices
- On Trend Micro - Deep Security
- On Forcepoint devices
- On Dell devices
User Interface
- Tabs
- Dashboard Views
- Customize Dashboard Views
EventLog Analyzer Reports
- Reports - Overview
- Configuring out-of-the-box reports
- Managing Predefined Reports
- Managing Report Views
- Create Custom Reports
- Schedule Reports
- Mark report as favourite
- Available Reports
Threat Intelligence Data Analytics
- Overview
- FireEye Threat Solutions
- Symantec Endpoint Solutions
- Symantec DLP Applications
- Malwarebytes Solutions
- CEF format
Vulnerability Data Analytics
- Overview
- Vulnerability reports
Real-time Event Correlation
- Understanding Correlation
- Correlation Reports
- Last Ten Incidents Overview
- Activity Reports
- Creating Custom Correlation Rules
- Managing Correlation Rules
Compliance Reports
- Configuring, editing, and scheduling compliance reports
Search Logs
- Overview
- How to Search Logs
- How to Extract New Fields
- How to Tag Fields
Alerts
- Overview
- Create Alert Profile
- View Log Alerts
- Alert Notification & Remediation
- Ticketing Tools Integration
- Manage alert Profiles
Incident Management
- Create and assign workflow profiles
- Incident Workflow Management
Framework Integration
- MITRE ATT&CK TTP(S) Framework Integration
Configurations
- What’s in this section
- Device Management
- Applications
- Database Audit
- File Integrity Monitoring
- Manage security applications
- Adding custom threat sources
- Advanced Threat Analytics
- Threat Whitelisting
- Manage Vulnerability Data
- Device Group Management
- VM Management
- Log Forwarder
Admin Settings
- Admin Settings
- Privacy Settings
- Agent Administration
- Archive
- Technicians and Roles
- Logon Settings
- Security hardening
- Reset Account Settings
- Domains and Workgroups
- Working Hour Settings
- Product Settings
- Retention Settings
- Log Collection Filter
- Log Collection Alerts
- Report Profiles
- Custom Log Parser
- Tags
- Dashboard Profiles
System Settings
- System Settings
- Notification Settings
- Manage Account TFA
- NT Service
- Connection Settings
- Re-branding
- Server Diagnostics
- Database Access
- Reset Log Collector
- Log Level Settings
- Port Management
Help, Questions, and Tips
- Troubleshooting Tips
- Frequently Asked Questions
- EventLog Analyzer Help
Additional Utilities
- Additional Utilities
- Working with HTTPS
- Configure MS SQL Database
- Migrate data from PostgreSQL to MS SQL database
- Migrate data from MySQL to MS SQL database
- Move Database to Different Directory in the Same Server
- Move Installation to Another Machine
- Move Installation to Different Directory in the Same Server
- Log360 Cloud Configurations
Distributed Edition
- Introduction to Distributed Edition
- Converting standalone installation to Admin Server
- Converting standalone installation to Managed Server
- Frequently Asked Questions
Technical Support
- Technical Support
- Create SIF offline
- Contact Support

Related Products
ADManager Plus

Active Directory Management & Reporting
Download | Demo
ADAudit Plus

Real-time Active Directory Auditing and UBA
Download | Demo
ADSelfService Plus

Self-Service Password Management
Download | Demo
Exchange Reporter Plus

Exchange Server Auditing & Reporting
Download | Demo
AD360

Integrated Identity & Access Management
Download | Demo
Log360

Comprehensive SIEM and UEBA
Download | Demo

Help Document

Release Notes

12.2.1 Build 12216 - Standalone Edition

Features

Enhancements

On this page