Gtb inspector hp arc sight smartconnectors supported products

Uploaded on


More in: Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads


Total Views
On Slideshare
From Embeds
Number of Embeds



Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

    No notes for slide


  • 1. ArcSight Connectors - Supported ProductsJanuary 2013The HP ArcSight library of out of the box SmartConnectors provides source-optimized collection for 310+commercial products. These products span the entire stack of event-generating source types, fromnetwork and security devices to databases and enterprise applications. SmartConnectors are the defaultlisting in this document.In addition to SmartConnectors developed and maintained by HP ArcSight, we test and certify thefollowing connector types through our Technology Alliances Program:  CEF Certified:- Ensures event information is captured properly in the (Common Event Format)  Action Certified: - Allows for control of a vendor’s technology from within the ArcSight console.Anti-Virus/Anti-Spam IBM Guardium – (CEF) Imperva SecureSphere – (CEF)F-Secure Anti Virus Oracle (Secerno DataWall)– (CEF)Kaspersky Anti-Virus Sentrigo HedgeHog (Enterprise, vPatch) – (CEF)McAfee VirusScan EnterpriseSophosSybari Antigen for Microsoft Exchange DatabaseSymantec Endpoint Protection Manager (SEPM) database IBM DB2SEP 12 IBM DB2 UDB Audit File, version 10Symantec Mail Security for MS Exchange Microsoft SQLTrendMicro OfficeScan (Control Manager, Oracle TM Control Manager DB) Oracle Audit VaultTrendMicro VirusWall (Control Manager) Oracle Audit Syslog, version 11gR2 Oracle Audit XML11gR2Applications Sybase Adaptive Server EnterpriseIBM WebSphereOracle Weblogic Server (BEA) Data Leak PreventionSAP ERP Fidelis XPS – (CEF) GTB Inspector –(CEF)Application Security McAfee Host Data Loss Prevention Endpoints (HDLP) Symantec DLP (Vontu)Arxan GuardIT – (CEF)Bit9 Parity Suite – (CEF)Layer7 SecureSpan/CloudSpan Gateway – (CEF) Data SecurityMcAfee Application Control (SolidCore) Cyber-Ark PIM – (CEF)Silver Tail Systems Forensics – (CEF) Cyber-Ark PIM – (Action) IngrianClinical / Healthcare Applications Vormetric Data Security Manager JBoss Security Auditing File 7.1FairWarning – (CEF)Content Security Firewall Check Point FW-1Aladdin eSafe Gateway Cisco PIX FirewallBarracuda (NetContinuum Web Firewall) Cisco PIX/ASA Syslog, version 8.5, 8.6McAfee Email and WebSecurity Appliance (CEF) CyberGuard FirewallMcAfee Web Gateway F5 BIG-IP Application Security Manager – (CEF)Proofpoint Enterprise Protection and Enterprise Privacy Juniper Networks (Altor Networks Virtual Firewall) - (CEF)Puresight Content Filter Juniper Network Security Manager (NetScreen)Secure Computing Webwasher Juniper Network Security Manager Syslog, version 2011.4TrendMicro Control Manager Juniper Networks Firewall and VPNTrendMicro InterScan Messaging Security Lucent Managed Firewall (Control Manager) McAfee Desktop FirewallTrendMicro InterScan Web Security (Control Manager) Secure Computing Gauntlet Firewall/VPN Stonesoft StonegateDAM/DB Security Symantec Enterprise FirewallApplication Security DBProtect – (CEF) Symantec Gateway Security
  • 2. Fortinet FortiGateHoneypot iPolicy Intrusion Prevention Firewall Palo Alto Networks PAN-OS - (CEF)HoneyD Secure Computing Sidewinder SonicWALLIDS/IPS – Host Based Stonesoft StoneGate – (CEF)Cisco Security Agent (Okena)ISS Black Ice Server Protection (SiteProtector) IT OperationsMcAfee Host IPS (Entercept) HP Operations Manager (OM, OMi)NFR Security HID HP Openview Operations (OVO)SANA Primary ResponseSymantec Critical System Protection databaseSymantec ITA (Intruder Alert) Log Consolidation & AnalysisTripwire Manager & Tripwire Enterprise – (CEF) Cisco MARS Enterprise IT Security SF-RiskSaver – (CEF) Quest InTrust (fka Aelita Event Manger (AEM)IDS/IPS – Network Based Qualys QualysGuard File, version 7.1Broadweb NetkeeperBro IDS Mail FilteringCisco IPS Sensor Cisco Ironport Email Security ApplianceCisco Secure IDS McAfee Email Gateway (Secure Computing IronMail)CounterSnipe McAfee Security for Email Servers (GroupShield)Enterasys Dragon MessageGateHP-TippingPoint UnityOne SMS Symantec Messaging Gateway (Mail Security 8200 Series)Intrusion SecureNet ProISS RealSecure Server SensorISS RealSecure WorkGroup Manager MainframeISS Proventia IPS Appliance (SiteProtector) CA Top SecretJuniper Networks IDP (NetScreen) Enterprise IT Security SF-Sherlock – (CEF)McAfee Network Security Manager (IntruShield) Enterprise IT Security SF-NoEvasion – (CEF)NFR Central Management Server IBM OS/390 (NVAS)NFR Security NID IBM OS/390 (SDSF)NitroSecurity IPS Type80 SMA_RT for RACFPacketAlarm IDS Type80 SMA_RT for CA Top SecretRadware DefenseProSnort Mail ServerSourcefire Intrusion Sensor IBM Lotus Notes Domino Enterprise ServerSourcefire Defense Center Management Console Microsoft ExchangeSourcefire Defense Center eStreamer, version 5.0.2, 5.1 Microsoft Forefront for Exchange ServerSourcefire RNA Sensor (Real-time Network Awareness) SendmailSymantec ManHuntSymantec Network Security 7100Toplayer Attack Mitigator Malware Detection Damballa CSP – (CEF)IDM, IAM & Identity Security Damballa Failsafe – (CEF)ActivCard AAA Server DB FireEye MPS – (CEF)Beyond Trust PowerBroker Unix/Linux –(CEF) Guidance Encase – (Action)CA eTrust SiteMinder (Netegrity) HBGary Active Defense – (CEF)Cisco Secure Access Control Server (ACS) Mandiant Intelligent Response – (CEF, Action)Cyber-Ark PIM Suite – (CEF) Taasera NetAnalyzer –(CEF)FOXt ServerControl (CEF) Truimfant Resolution Manager – (CEF)IBM Tivoli Access ManagerJuniper SBR (Steel Belted Radius)Lieberman Software ERPM – (CEF) Midrange SystemsMicrosoft Active Directory IBM AS/400Microsoft ForefrontMicrosoft Network Policy Server (Windows IAS/RADIUS) Network Access ControlNovell Nsure Audit ForeScout CounterACT– (CEF, Action)Oracle NetPoint (Oblix) Mirage Networks CounterpointOracle SunONE Directory ServerPacketMotion PacketSentry – (CEF)Ping Identity PingFederate – (CEF) Network Behavior AnomalyRSA Authentication Manager (ACE Server) Arbor Networks PeakflowRSA Access Manager (ClearTrust) Lancope StealthWatch – (CEF)Secure Computing SafeWord PremierAccess Mazu ProfilerThycotic Secret Server – (CEF) Network DiscoveryIntegrated Security Lumet IPsonarBarracuda Networks Spam FirewallCisco ASA 5500 Network Forensics - Page 2 -
  • 3. Narus Insight CyberProtection – (CEF)Niksun NetDetector – IBM SiteProtector(CEF) Intrusion Securenet ProviderNiksun NetOmni – (Action)RSA NetWitness – (CEF) ISS Site Protector McAfee ePONetwork Management McAfee Rogue System Detection (via ePO) MicroSoft Audit Collection SystemCisco Works Redseal Networks Advisor - (CEF)F5 BigIP – (CEF) Symantec ESMHP Network Node Manager i (NNMi) Symantec SESANetwork Monitoring Storage NetApp Filer (FAS)ISC DHCP EMC CelerraISC BINDMicrosoft Operations Manager DB (MOM)Microsoft System Center Operations Manager DB (SCOM) SwitchMicrosoft DHCP Cisco CatalystMicrosoft DNS Cisco CSS 11500 Series Content Services SwitchesMicrosoft WINS Cisco NX-OSNagios Foundry Networks Big Iron HP Ethernet SwitchNetwork Traffic Analysis VirtualizationCisco NetFlow / Flexible Netflow CounterTack Event Horizon - (CEF)NetScout nGenius – (CEF) VMWare ESX/ESXi ServernPulse HammerHead – (Action) VMWare Virtual CenterQoSient ArgusInMon sFlowIxia Net Tool Optomizer –(Action) VPNSolera Networks – (Action) Alcatel Secure VPN GatewayTCP Dump Check Point VPN-1 Cisco VPN Concentrator Citrix Access GatewayNetwork Traffic Management Juniper/NetScreen (Neoteris) SSL VPNCisco Distributed Director 4500 Nortel Contivity Extranet SwitchBro IDSOperating Systems Vulnerability Assessment eEye REM Security Management ConsoleIBM AIX Operating System eEye Retina Network Security ScannerHP OpenVMS Harris STAT ScannerHP-UX Operating System ISS Internet ScannerHP-UX Syslog, version 11i v3 McAfee Vulnerability Manager (Foundscan)Microsoft Windows 7/NT/2000/2003/XP/2008 Server/Vista nCircle IP360 Device ProfilerMicrosoft Windows Event Log – Unified, SQL Server 2012 nCircle IP360 Threat Monitorfor SQL Server Audit NmapRedhat Linux OVALSnare for Microsoft Windows Qualys GuardSolaris BSM Rapid 7 NeXposeUNIX Symantec NetReconSabernet NT Syslog Tenable NessusHP NonStop Servers (XYPRO Merged Audit) – (CEF) Visionael Security Audit Saint Vulnerability ScannerPhysical Systems/SecurityRedCloud Security Enterprise/Virtual – (CEF) Web Cache BlueCoat Proxy SG SeriesPolicy Management Microsoft ISAMcAfee Policy Auditor Network Appliance NetCacheNetIQ Security Manager SquidSecurify SecurVantageSolsoft Policy Server Web Filtering Cisco Ironport Web Security ApplianceRouter Websense Web Security SuiteCisco RouterJuniper Router (JUNOS) Web ServerHP H3C Comware Platform Apache Microsoft IISSecurity Management Sun ONEEnterasys Dragon Server - Page 3 -
  • 4. Wireless Aruba Mobility ControllerAirDefense Guard Cisco AIRONET 1200AirMagnet Enterprise Cisco Mobility Services EngineAirPatrol Wireless Policy Manager – (CEF) Newbury Networks Wi-fi WatchdogAirPatrol Zone Defense (CEF)AirTight Spectra Guard – (CEF)Note: Most ArcSight SmartConnectors can be deployed as software and are also supported on ArcSight Connector ApplianceAbout HP ArcSight:HP ArcSight is a leading global provider of cyber-security and compliance solutions that protect organizationsfrom enterprise threats and risks. Based on the market-leading SIEM offering, the HP ArcSight SecurityInformation and Risk Management (SIRM) platform enables businesses and government agencies to proactivelysafeguard digital assets, comply with corporate and regulatory policy and control the internal and external risksassociated with cyber-theft, cyber-fraud, cyber-warfare and cyber-espionage.For more information, visit - Page 4 -