Versions Compared

Old Version 1

changes.mady.by.user Juan Tomás Alonso Nieto

Saved on

compared with

New Version 2

changes.mady.by.user Juan Tomás Alonso Nieto

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents
maxLevel2
typeflat

...

The full tag must have three levels. The first two are fixed as uba.varonis. The third level identifies the technology type and it can be dataalert (events generated by datAlert) or alerts (events generated by DatAdvantage).

Technology

Brand

Type

uba

varonis

  • dataalert
  • alerts
  • audit

Therefore, the valid tags include:

...

  • Source Port → 13076
  • Target Tag → uba.varonis.dataalert
  • Select both Stop Processing and Sent without syslog tag

Rule 2 - datAdvantage events

  • Source Port → 13076
  • Target Tag → uba.varonis.alerts
  • Select both Stop Processing and Sent without syslog tag


...