UpPrevious Next Sheriff CSM™ Sheriff CSM Deployment Requirements Sheriff CSM has the following general deployment requirements. Minimum Hardware Requirements fo...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 11: Regularly Test Security Systems and Processes Testing Procedure How Sheriff CSM Delivers Sherif...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 10: Track and Monitor Access to All Network Resources and Cardholder Data Testing Procedure How Sherif...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 9: Restrict Physical Access to Cardholder Data Testing Procedure How Sheriff CSM Delivers Sheriff CS...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 8: Identify and Authenticate Access to System Components Testing Procedure How Sheriff CSM Delivers S...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 7: Restrict Access to Cardholder Data by Business Need to Know Testing Procedure How Sheriff CSM Deliv...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 6: Develop and Maintain Secure Systems and Applications Testing Procedure How Sheriff CSM Delivers S...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 5: Protect All Systems Against Malware and Regularly Update Anti Virus Software or Programs Testing Proc...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 4: Encrypt Transmission of Cardholder Data Across Open, Public Networks Testing Procedure How Sheriff C...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 3: Protect Stored Cardholder Data Testing Procedure How Sheriff CSM Delivers Sheriff CSM Instructions...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 1: Install and Maintain a Firewall Configuration to Protect Cardholder Data Testing Procedure How Sher...

UpPrevious Next Sheriff CSM™ PCI DSS 3.2 Requirement 2: Do Not Use Vendor Supplied Defaults for System Passwords and Other Security Parameters Testing Procedur...

Viewing the Scan Results This section covers the following subtopics: * Vulnerabilities Views * Viewing the Scan Results in HTML * Viewing the Scan Resul...

UpPrevious Next Sheriff CSM™ Create New Accounts for LDAP Users Use this procedure to create new user accounts for LDAP users. For local users, see Create New Acc...

UpPrevious Next Sheriff CSM™ Create New Accounts for Local Users Use this procedure to create new user accounts for local Sheriff CSM users. For LDAP users, see C...

UpPrevious Next Sheriff CSM™ Sheriff CSM User Accounts Sheriff CSM has different levels of user accounts for administration and management: * Root user — Crea...

UpPrevious Next Sheriff CSM™ Create Custom Reports from SIEM Events If the available report modules do not suit your needs, you can generate your own module, whic...

UpPrevious Next Sheriff CSM™ Create Custom Reports If predefined reports in Sheriff CSM do not suit your needs, you can either modify an existing report or gener...

UpPrevious Next Sheriff CSM™ How to Run Reports You can find all the Sheriff CSM reports on Reports All Reports. All Reports ' width='665' / For field descri...

UpPrevious Next Sheriff CSM™ Changing Other Vulnerability Scanner Options You can modify the default vulnerability scanner settings to optimize the scanner for y...

UpPrevious Next Sheriff CSM™ Creating a Custom Scan Profile You can create a custom profile and tailor it to the type of the target system you are scanning. To c...

UpPrevious Next Sheriff CSM™ Current Vulnerabilities — Asset Vulnerability Details The Asset Vulnerability Details section summarizes all current vulnerabilities...

UpPrevious Next Sheriff CSM™ Creating Credentials for Vulnerability Scans Although optional, we recommend that you use credentials to perform authenticated vulne...

UpPrevious Next Sheriff CSM™ Creating Vulnerability Scan Jobs By default, Sheriff CSM runs vulnerability scan jobs without any authentication. They are less thor...

UpPrevious Next Sheriff CSM™ Running Vulnerability Scans from Assets You can run vulnerability scans on individual assets. The fewer assets to scan, the sooner t...

UpPrevious Next Sheriff CSM™ Tutorial: Create a Policy to Send Emails for Account Lockout Events You can also use the send an email policy for things such as acco...

UpPrevious Next Sheriff CSM™ Modify an Existing Policy You can modify any existing policy as needed. To modify an existing policy 1 From Configuration Threa...

UpPrevious Next Sheriff CSM Create an Action You can create actions for Sheriff CSM to perform on security events. This includes sending an email, executing a sc...

UpPrevious Next Sheriff CSM™ Tutorial: Modifying a Built In Directive Sheriff CSM comes with over 4,500 built in directives, written by the researchers in the AT...

UpPrevious Next Sheriff CSM™ Edit a Ticket On Analysis Tickets, you can search for the ticket you want to update, and then select the ticket by clicking its ti...

UpPrevious Next Sheriff CSM™ NetFlow Monitoring Configuration Many external NetFlow sources (such as routers and switches) have NetFlow capabilities already defi...

UpPrevious Next Sheriff CSM™ Review Security Events %TWISTY{ showlink="Table of Contents" hidelink="Table of Contents" start="show" showimgleft="" hideimglef...

UpPrevious Next Sheriff CSM™ Taking Ownership of an Alarm As part of an alarm remediation response, you should take ownership of an alarm you want to work on. Th...

UpPrevious Next Sheriff CSM™ Reviewing Alarms as a Group This task helps you sort alarms in bulk as a group when you have many alarms that are similar. You can a...

UpPrevious Next Sheriff CSM™ Running Vulnerability Scans from Assets You can run vulnerability scans on individual assets. The fewer assets to scan, the sooner th...

UpPrevious Next Sheriff CSM™ Burn the Sheriff CSM ISO Image to a USB Drive This procedure is a prerequisite to updating Sheriff CSM offline or restoring the soft...

UpPrevious Next Sheriff CSM™ Update Sheriff CSM Online You need to update Sheriff CSM manually after a release becomes available. You can perform the update eithe...

UpPrevious Next Sheriff CSM™ Configure WMI Plugins Windows Management Instrumentation (WMI) plugins collect Microsoft Windows events and data remotely. These plu...

UpPrevious Next Sheriff CSM™ Configure the Sheriff CSM Hardware You can manage the Sheriff CSM hardware either locally or remotely, through the IPMI or HPE iLO i...

UpPrevious Next Sheriff CSM™ Locate the Sheriff License and System ID When contacting Sheriff Technical Support, you are often asked to provide the Sheriff licen...

UpPrevious Next Sheriff CSM™ Message Center Sheriff CSM uses the Message Center to centralize all in system errors, warnings, and messages. They also include exte...

UpPrevious Next Sheriff CSM™ Tutorial: Create a Plugin for Microsoft Exchange In this tutorial, we use Microsoft Exchange to show how to develop a log plugin. The...

UpPrevious Next Sheriff CSM™ Develop New Plugins from Scratch %TWISTY{ showlink="Table of Contents" hidelink="Table of Contents" start="show" showimgleft="" ...

UpPrevious Next Sheriff CSM™ Create New Plugins Using the Plugin Builder In addition to the other methods described for customizing or creating new Sheriff CSM p...

UpPrevious Next Sheriff CSM™ Verify that an Enabled Plugin Is Working Properly It's good practice to test whether or not a plugin is working correctly, after you...

UpPrevious Next Sheriff CSM™ Building a VPN Tunnel Without a Client Server Connection If there is no connection between the VPN server and the client, which is o...

UpPrevious Next Sheriff CSM™ Configure Mail Relay in Sheriff CSM You can configure to receive emails from Sheriff CSM. For example, if you want to receive an ema...

UpPrevious Next Sheriff CSM™ Configure the Sheriff CSM Sensor (Deputy) after Deployment You'll want to set up and configure the Sheriff CSM Server first. If you ...

UpPrevious Next Sheriff CSM™ Vulnerabilities Views %TWISTY{ showlink="Table of Contents" hidelink="Table of Contents" start="show" showimgleft="" hideimglef...

UpPrevious Next Sheriff CSM™ Review Event Details Event Details identifies all information Sheriff CSM collected about this event. It also displays the number of ...