Trend Micro Deep Security
Version: Trend Micro Deep Security
Netsurion Open XDR manages logs retrieved from Trend Micro Deep Security. The alerts, reports, dashboards, and saved searches in Netsurion Open XDR are enhanced by capturing important and critical activities in Trend Micro Deep Security.
The following are the key assets included with this Data Source Integration.
Alerts
| Type | Name | Description |
|---|---|---|
| Security | Trend Micro Deep Security – Action taken on malware | Generated whenever Trend Micro Deep Security has acted on a potentially malicious file. |
| Security | Trend Micro Deep Security – Administrator authentication failed | Generated when Trend Micro user authentication has failed for the user. |
| Security | Trend Micro Deep Security – Anti-malware action failed | Generated when Trend Micro Deep Security failed to act on a potentially malicious file. |
| Security | Trend Micro Deep Security – Duplicate computer detected | Generated whenever Trend Micro Deep Security has detected a duplicate computer. |
| Security | Trend Micro Deep Security – Intrusion prevention detected | Generated when an intrusion prevention event has occurred related to Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – Malicious URL detected | Generated when a request related to the device has been marked as suspicious due to some reason. |
| Security | Trend Micro Deep Security – No action taken on malware | Generated when Trend Micro Deep Security acted on a potentially malicious file. |
Reports
| Type | Name | Description |
|---|---|---|
| Security | Trend Micro Deep Security – User management | Provides all details related to activities concerning User management in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – Active directory activity | Provides all details related to active directory activities in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – File integrity monitoring | Provides all details related to the file integrity monitoring in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – Antimalware activity | Provides all details related to the antimalware activities in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – Firewall activity | Provides all details related to activities concerning firewall activities in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – Intrusion prevention | Provides all details related to the intrusion prevention in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – User authentication failed | Provides all details related to user authentication failed in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – User logon activity | Provides all details related to user logon activities in Trend Micro Deep Security. |
| Compliance | Trend Micro Deep Security – System logs | Provides all details related to activities concerning system logs in Trend Micro Deep Security. |
| Compliance | Trend Micro Deep Security – Computer management | Provides all details related to activities concerning computer management in Trend Micro Deep Security. |
| Compliance | Trend Micro Deep Security – Policy management | Provides all details related to policy management in Trend Micro Deep Security. |
| Compliance | Trend Micro Deep Security – Roles management | Provides all details related to roles management in Trend Micro Deep Security. |
| Compliance | Trend Micro Deep Security – Group management | Provides all details related to group management in Trend Micro Deep Security. |
Dashboards
| Type | Name | Description |
|---|---|---|
| Security | Trend Micro Deep Security – User authentication failed | Displays all details about user authentication failed activities. |
| Security | Trend Micro Deep Security – Successful user login by IP address | Displays all details about successful user login by IP address. |
| Security | Trend Micro Deep Security – Malicious hashes by threat names | Displays all details about malicious hashes by threat names. |
| Security | Trend Micro Deep Security – Suspicious file paths by threat name | Displays all details about suspicious file paths by threat name. |
| Security | Trend Micro Deep Security – Intrusion detected on destination IP | Displays all details about intrusion detected on destination IP. |
| Compliance | Trend Micro Deep Security – Computer management | Displays all details about computer management. |
| Compliance | Trend Micro Deep Security – Policy management | Displays all details about policy management. |
Saved Searches
| Type | Name | Description |
|---|---|---|
| Security | Trend Micro Deep Security – User management | Provides all details related to activities concerning User management in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – Active directory activity | Provides all details related to active directory activities in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – File integrity monitoring | Provides all details related to the file integrity monitoring in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – Antimalware activity | Provides all details related to the antimalware activities in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – Firewall activity | Provides all details related to activities concerning firewall activities in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – Intrusion prevention | Provides all details related to the intrusion prevention in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – User authentication failed | Provides all details related to user authentication failed in Trend Micro Deep Security. |
| Security | Trend Micro Deep Security – User logon activity | Provides all details related to user logon activities in Trend Micro Deep Security. |
| Compliance | Trend Micro Deep Security – Computer management | Provides all details related to activities concerning computer management in Trend Micro Deep Security. |
| Compliance | Trend Micro Deep Security – Policy management | Provides all details related to policy management in Trend Micro Deep Security. |
| Compliance | Trend Micro Deep Security – Roles management | Provides all details related to roles management in Trend Micro Deep Security. |
| Compliance | Trend Micro Deep Security – Group management | Provides all details related to group management in Trend Micro Deep Security. |
| Compliance | Trend Micro Deep Security – System logs | Provides all details related to activities concerning system logs in Trend Micro Deep Security. |
Documentation
The configuration details are consistent with Netsurion Open XDR 9.3 and later, and Trend Micro Deep Security.
Download the Integration Guide for configuration instructions and more information.