In our organization, we have a data source that reports events by SNMP Traps. How can I integrate it in SIEM?
first create a SNMP Profile:
Physical Display > Profile managment > Add > Profile Type = SNMP trap.
fill the Fields of the SNMP trap.
Create A data Source:
Receiver > Add Data Source > fill in the fields > in the "Enabled" field Check the SNMP Trap with the Profile you created.
Keen to find out if this actually works. Is this related?
Can you only get these five type of events, not others? Is it possible to write custom parsers for SNMP type data source? Thanks.
- Authentication Failure- Cold Start- EGP Neighbor Loss- Link Down- Link Up and Warm Start
Download the new ePolicy Orchestrator (ePO) Support Center Extension which simplifies ePO management and provides support resources directly in the console. Learn more about ePO Support Center
2821 Mission College Blvd.
Santa Clara, CA 95054 USA
Consumer Support | Enterprise Support | McAfee.com
Legal | Privacy | Copyright © 2019 McAfee, LLC