Versionen im Vergleich

Alte Version 7

changes.mady.by.user LANCOM Redaktion

Gespeichert am

verglichen mit

Neue Version 8

changes.mady.by.user LANCOM Redaktion

Gespeichert am

Schlüssel

  • Diese Zeile wurde hinzugefügt.
  • Diese Zeile wurde entfernt.
  • Formatierung wurde geändert.

...

Seiteneigenschaften


Description:

A SIEM system (Security Information and Event Management) serves to recognize threats in the network in real time and take appropriate countermeasures. For this purpose, the SIEM system gathers logs from network components and analyzes these.

...

  • Your LANCOM Unified Firewall must be managed by the LMC 
    • The Unified Firewall must be assigned to a site 
    • The Unified Firewall must be assigned the role Gateway
  • Access to the LMC to update and roll out the configuration of the Unified Unified Firewall
  • LCOS FX as of version 10.13 Rel (download latest version)
  • Configured and functional SIEM system
Info

The SIEM implementation in the LMC has been successfully tested with the following SIEM systems:

  • Microsoft Sentinel
  • Splunk
  • Enginsight
  • Wazuh
  • Logpoint

Procedure:

1) Activate SIEM support in the LMC:

...

Info

You can find the SIEM API documentation (swagger) under the following link:

https://cloud.lancom.de/cloud-service-siem/api-docs/

...