8e6 Technologies TAR HL/SL/MSA manual Specify Alert Components, Specify alert criteria

Page 17

CHAPTER 4: CREATE AN AUTOMATED ALERT STEP 3: SPECIFY ALERT COMPONENTS

Step 3: Specify Alert Components

Create a new alert by performing the following actions:

1.Click on one of the gauge names in the “Current Gauge” list (e.g. “Adult Content”).

2.Enable Alert Action checkboxes for “Email” and “Lockout”.

3.Type in the name for your alert in the “Alert Name” field.

4.Type in an email address and click the “Add Email” button. This is the address of the person who will be notified when an alert is triggered. You can add multiple email addresses.

5.Select a Severity level (Low, Medium or High). This section is only enabled when the “Lockout” checkbox is selected. A “Low” selection will lock out the user by the categories monitored in the specific gauge only. A “Medium” selec- tion will lock out the user from Internet access altogether. A “High” selection will lock out the users from all network protocols, so they cannot access the Internet, send e-mails, use instant messaging, or use P2P or FTP.

NOTES: Time-based lockouts can be set for a range of 30 minutes, one hour to eight hours, or unlimited.

System Tray will not be shown in this demo, but if this feature is enabled, the administrator with an LDAP username, password and domain will see a system tray alert in the desktop system tray when an alert has been triggered. This applies to Active Directory environ- ments only. For more information, please consult the Threat Analysis Reporter User Guide.

6.Create a Threshold per user. This numeric value is the number of times each user will be allowed to visit categories monitored by the gauge before triggering an alert.

7.Click on the “Submit” button to activate the alert.

Specify alert criteria

8E6 TECHNOLOGIES, THREAT ANALYSIS REPORTER EVALUATION GUIDE

13

Page 16 Page 18
Image 17
Page 16 Page 18
Contents Guide Threat Analysis Reporter Evaluation Guide Contents Hapter 5 V IEW a URL T Rend R Eport Threat Analysis Reporter Evaluation Guide Install, Configure, and Test TAROverview Login window Access the TAR WEB ClientLaunch IE Type in the URLURL dashboard with URL gauges Drill Down Into a URL Gauge How to Read a GaugeAnatomy of a gauge diagram Select the Security parent gauge View Child GaugesOpen the child gauges window View a List of Users Affecting a Child GaugeView an Individual User’s Gauge Activity View Category Details Take Action on an Individual’s ActivityView a summary of an end user’s activity View a list of sub-categoriesView URL Details View the Actual Web Page Visited by the UserAdd a Gauge Group Select the Gauges Menu ItemCreate a NEW URL Gauge Select Gauges from left panelDefine components for the gauge Define the GaugeSpecify thresholds and the gauge method Advanced SettingsAdd a New Alert Select AlertsCreate AN Automated Alert Select Alerts from left panelSpecify alert criteria Specify Alert ComponentsSelect Trend Chart from left panel Access Trend ChartsView URL Trend Charts Change the Time SpanSelect the FTP Protocol Gauge Select Bandwidth and OutboundMonitor Bandwidth Gauges Select Bandwith and OutboundView the User Summary Select Port 21 Child GaugeFTP Port 21 gauge View User SummaryView bandwidth used by end user View Port TrafficView Bandwidth Trend Chart Data Select Bandwidth and Trend ChartBandwidth and Trend Chart selection View Bandwidth Trend chart
Top Page Image Contents