This courses teaches how to install, configure and troubleshoot NXLog on Windows
Audience: USM Anywhere System Administrators
Topics
- Module 1: Introduction and Overview
- Module 2: Install, Configure, and Troubleshoot
- Module 3: Forwarding Extra Logs
- Module 4: Filtering Logs with PatternDB
Course Duration: 35 minutes
This course demonstrates how to configure your Azure environment to collect and forward logs to a USM Anywhere sensor using the Azure Agent and Web Application logging.
Audience: USM Anywhere System Administrators
Recommended Prerequisites:
- Course: Introduction to USM Anywhere
- Course: Setting up USM Anywhere
Topics
- Module 1: Configuring Azure Sensor Credentials
- Module 2: Configuring Azure Agent Logging (Windows)
- Module 3: Configuring Azure Web App Logging
Course Duration: 32 minutes
This course demonstrates how to configure your AWS environment to collect and forward logs to a USM Anywhere sensor using AWS CloudTrail, AWS VPC Flow Logs, and the AWS CloudWatch agent.
Audience: USM Anywhere System Administrators
Recommended Prerequisites:
- Course: Introduction to USM Anywhere
- Course: Setting up USM Anywhere
Topics
- Module 1: Configuring CloudTrail
- Module 2: Configuring VPC Flow Logs
- Module 3: Configuring CloudWatch Agent
Course Duration: - 30 minutes
This course introduces you to the AlienVault Agent. The AlienVault Agent extends the Endpoint Threat Detection and Response (EDR) capabilities of AlienVault® USM Anywhere™. It includes host-based threat detection, file integrity monitoring, Windows log collection and response actions, all without a sensor. Each agent will talk directly to AlienVault® USM Anywhere™. This makes the agent particularly useful for monitoring remote assets.
Audience: USM Anywhere System Administrators
Recommended Prerequisites:
- Course: Introduction to USM Anywhere
- Course: Setting up USM Anywhere
Course Duration: 15 Minutes
This course demonstrates how to configure your Microsoft Windows Server 2008 (or newer) to forward logs to a sensor using Windows Event Forwarding. You will see how to install the required certificate on your system and how the group policy can be updated to forward the events.
Audience: USM Anywhere System Administrators
Recommended Prerequisites:
- Course: Introduction to USM Anywhere
- Course: Setting up USM Anywhere
Course Duration: 4 Minutes
This course demonstrates how to configure your Microsoft HyperV server to forward both physical and virtual network traffic to your HyperV Sensor for monitoring.
Audience: USM Anywhere System Administrators
Course Duration: 4 Minutes
This course demonstrates how to configure your VMware ESX server to forward both physical and virtual network traffic to your VMware Sensor for monitoring.
Audience: USM Anywhere System Administrators
Recommended Prerequisites:
- Course: Introduction to USM Anywhere
- Course: Setting up USM Anywhere
Course Duration: 7 Minutes