Logo
Sign in
  1. Logpoint Service Desk
  2. Products Hub
  3. Marketplace
default.png

UEBA PreConfiguration Plugin

The UEBA PreConfiguration Plugin  bundles the necessary components to prepare your input logs for UEBA analysis. UEBA observes the behavior of each user and entity to set a baseline for normal behavior. To set a proper baseline, UEBA requires a minimum of 30 days of the properly normalized and enriched set of data. The UEBA PreConfiguration Plugin installs the enrichment sources and enrichment policy for easy preparation of your data. 

For Logpoint version:

6.7.0 or later 6.6.5 to 6.6.6

 

Important Notice

You must install the UEBA PreConfiguration Plugin to prepare your input logs for UEBA.

Release Details
Version:5.0.0
Release date:2020-02-26
Document date:2020-02-26
SHA 256: d52b75e5927c59d020653a57f8c4fbadb596f8a229fc3603f8292f8ca7d66983
Download

Package Details

The application consists of the following components:

  1. Enrichment Sources
    • UEBA_SourceAddrToHostname
    • UEBA_ActiveDirectoryUsers
    • UEBA_DestAddrToHostname
    • UEBA_ProtocolTable
  2. Enrichment Policy

    • UEBA_ENRICHMENT_POLICY

Enhancement

The application has been updated to comply with LogPoint v6.7.0.

Installation

Follow these steps to install the UEBA PreConfiguration Plugin v5.0.0:

  1. Download the UEBA_PreConfiguration_5.0.0.pak file provided in the Download section above. 
  2. Install the plugin by importing the pak file to LogPoint under Settings >> System >> Applications.

Refer to the Configuration section of the UEBA PreConfiguration Plugin Manual to view the details on the configuration.   

Documentation

You can get the UEBA PreConfiguration Plugin Manual from the Download section above.

 

Important Notice

You must install the UEBA PreConfiguration Plugin to prepare your input logs for UEBA.

Release Details
Version:3.3.1
Release date:2019-12-05
Document date:2019-12-05
SHA 256: f152908164908368d87e3a2038907e06aed6433717b97e98613c23199462efe2
Download

Package Details

The application consists of the following components:

  1. Enrichment Sources
    • UEBA_SourceAddrToHostname
    • UEBA_ActiveDirectoryUsers
    • UEBA_DestAddrToHostname
    • UEBA_ProtocolTable
  2. Enrichment Policy

    • UEBA_ENRICHMENT_POLICY

Enhancement

The UEBA PreConfiguration Plugin now adds two new enrichment sources: UEBA_DestAddrToHostname and UEBA_ProtocolTable.  

Installation

Follow these steps to install the UEBA PreConfiguration Plugin v3.3.1:

  1. Download the UEBA_PreConfiguration_3.3.1.pak file provided in the Download section above. 
  2. Install the plugin by importing the pak file to LogPoint under Settings >> System >> Applications.

Refer to the Configuration section of the UEBA PreConfiguration Plugin Manual to view the details on the configuration.   

Documentation

You can get the UEBA PreConfiguration Plugin Manual from the Download section above.

Support

If you have any queries or require assistance, please feel free to contact our support team: 

Email: servicedesk@logpoint.com
Phone: +45 7060 6100

Best regards,
untitled.svg

Comments

Please sign in to leave a comment.

Follow

Related articles

  • Logpoint Agent Collector
  • Lookup
  • Universal Normalizer
  • EMCCollector
  • Creation of a new normalization request
Privacy policy    EULA    Terms of service   
Copyright © , Logpoint. All rights reserved.