• Update - ArcSight Default Content

    Dear Experts, I hope all is well. We need to upgrade our ESM default content and be at the latest version. How to achieve that.
  • ArcSight Command Center Access

    Hello, I can't connect to the ArcSight command center. I don't know where to look to solve it.. Need help
  • ESM Content Sync between ESM-HQ and ESM-DR

    Hi Dears, I want to replicate my ESM Content from HQ to another ESM Disaster Recovery I case of incidents, I could see my resources in ESM D isaster Recovery What is best practice and steps should I follow to achieve that. Regards, Ha…
  • P-Pulse Secure

    This is the official forum for discussing the basic ArcSight Activate P-Pulse Secure product package as described in the wiki .
  • Out of hours login variable logic

    Hello Comunity, I am hoping someone could assist with a logic problem i am having. Overview I would like to create a rule that alerts me if a use has logged in outside of the hours of 06:00-18:00 and if they login on at any time during Saturday and Sunday…
  • Use Case: Be alerted when event viewer is opened - Help

    Hello, I wish to find out when a user views/deletes/modifies the event viewer. I thought that this could be a pretty common use case and was wondering if anyone has any experience with this already? Just looking for starting points and any tips. Regards…
  • P-HPE Atalla HSM

    This is the official forum for discussing the P-HPE Atalla HSM Product package, as described in the Activate Wiki .
  • Activate Customer Base Template

    This is the official forum for discussing the Activate Customer Base Templates, as described in the ArcSight Activate Wiki . See the Activate Customer Base Template Activate Wiki page for additional details.
  • L2-Data Security Monitoring - Encryption - Situational Awareness

    This is the official forum for discussing the basic ArcSight Activate L2-Data Security Monitoring - Encryption - Situational Awareness package, as described in the Activate Wiki . Roadmap : Data at Rest Suspicious Encryption Activities …
  • L1-Data Security Monitoring - Encryption - Indicators and Warnings

    This is the official forum for discussing the basic ArcSight Activate L1-Data Security Monitoring - Encryption - Indicators and Warnings package, as described in the Activate Wiki . Roadmap: Below are the initial use case and user story ideas…
  • Missing dcString1 GV

    Unfortunately, /All Fields/ArcSight Activate/Core/Field Manipulation/Convert Case/dcString1 global variable (GV) disappeared in one of the recent updates. Here is a package with the missing GV. We will be posting Activate Base 2.5.0.0 soon, but…
  • P-Blue Coat Proxy

    This is the official forum for discussing the basic ArcSight Activate P-Blue Coat Proxy product package as described in the Activate Wiki .
  • P-Sourcefire FireSIGHT

    This is the official forum for discussing the basic ArcSight Activate P-Sourcefire FireSIGHT product package as described in the Activate Wiki .
  • P-Linux

    This is the official forum for discussing the basic ArcSight Activate P-Linux product package as described in the Activate Wiki .
  • L2-User Monitoring - Situational Awareness

    This is the official forum for discussing the ArcSight Activate L2-User Monitoring - Situational Awareness package, as described in the Activate Wiki .
  • L1-User Monitoring - Indicators and Warnings

    This is the official forum for discussing the ArcSight Activate L1-User Monitoring - Indicators and Warnings package, as described in the Activate Wiki .
  • L2-Host Monitoring - Situational Awareness

    This is the official forum for discussing the basic ArcSight Activate L2-Host Monitoring - Situational Awareness package, as described in the Activate Wiki .
  • L1-Host Monitoring - Indicators and Warnings

    This is the official forum for discussing the basic ArcSight Activate L1-Host Monitoring - Indicators and Warnings package, as described in the Activate Wiki .
  • L2-Threat Intelligence - Situational Awareness

    This is the official forum for discussing the basic ArcSight Activate L2-Threat Intelligence - Situational Awareness package, as described in the Activate Wiki . Version 1.1.0.0 TI: (L2-Threat_Intelligence_-_Situational_Awareness_1.1.0.0.arb) New…
  • L1-Threat Intelligence - Indicators and Warnings

    This is the official forum for discussing the basic ArcSight Activate L1-Threat Intelligence - Indicators and Warnings package, as described in the Activate Wiki . Version 1.1.0.0 TI: (L1-Threat_Intelligence_-_Indicators_and_Warnings_1.1.0.0.arb) …
  • ArcSight Activate Templates

    This is the official forum for discussing the basic ArcSight Activate Templates, as described in the Activate Wiki . See T-Activate Templates for Developers for additional details and other templates (planned).
  • L2-Perimeter Monitoring - Situational Awareness

    This is the official forum for the discussion of the L2-Perimeter Monitoring - Situational Awareness package. This content is coming soon! The installation/update package will be available from the ArcSight Marketplace. All new and updated Activate…
  • L1-Perimeter Monitoring - Indicators and Warnings

    This is the official forum for the discussion of the L1-Perimeter Monitoring - Indicators and Warnings package. The installation/update package will be available from the ArcSight Marketplace. All new and updated Activate Framework packages will be…
  • L2-Network Monitoring - Situational Awareness

    This is the official forum for the discussion of the L2-Network Monitoring - Situational Awareness package. The installation/update package is available from the ArcSight Marketplace. All new and updated Activate Framework packages is available on the…
  • L1-Network Monitoring - Indicators and Warnings

    This is the official forum for the discussion of the L1-Network Monitoring - Indicators and Warnings package. The installation/update package will be available from the ArcSight Marketplace. All new and updated Activate Framework packages will be…