Solaris is an operating system based on Unix developed in 1992 by Sun Microsystems. Netsurion Open XDR integrates with Solaris via syslog and monitors the events to provide insight on security and compliance events such as login, logout, login-failed events, command executed and privilege escalation.
Netsurion Open XDR helps you to monitor the login activities, privilege escalation, command execution and many other activities in Solaris. It generates alert whenever login fails on Solaris based system. Its visualization helps you to understand the activities happening on the Solaris system which helps you to find suspicious activities.
Once Solaris is configured to deliver events to Netsurion Open XDR; alerts, dashboards and reports can be configured into Netsurion Open XDR.
- Monitoring security actions such as command executed, login failure, privilege escalation etc.
- Monitoring operational activities such as login, logout etc.
The following are the key Data Source Integration available in Netsurion Open XDR.
|Security||Solaris – Login Failure||This alert is generated when login fails and provides information such as username and the IP address.|
|Security||Solaris – Login Logout||This report provides information related to login-logout activities along with the username and IP Address from where the login occurred.|
|Security||Solaris – Login Failed||This report provides information related to login failed activities along with the username and IP Address from where the login was attempted.|
|Security||Solaris – Privilege Escalation||This report provides information related to the privilege escalation and provides information about the user who had requested for privilege escalation and status of the request.|
|Compliance||Solaris – Command Executed||This report provides information related to the command that were executed.|
The configuration details are consistent with Netsurion Open XDR 9.x or later, and Solaris.