ArcSight SmartConnector Parser Update

198209

Micro Focus Micro Focus Community

App Support Tiers

MICRO FOCUS SUPPORTED

Support via Micro Focus Software Support, with a ticket filed against the associated product.

PARTNER

Micro Focus offers a content partnership program for select partners. Support for Partner Content offerings is provided by the partner and not by Micro Focus of the Micro Focus community.

MICRO FOCUS COMMUNITY

Micro Focus Community Content is provided by Micro Focus for the benefit of customers, support for it is not available via Micro Focus Software Support but through specific community content forums.

COMMUNITY

Community Contributed Content is provided by Micro Focus customers and supported by them.

Micro Focus | Micro Focus Community

Monthly SmartConnector Parser Release
10,135 downloads

See previous releases
Share
 

Product compatibility

SmartConnector Management Center (ArcMC) Transformation Hub

CATEGORY

Description

To support newer device versions and to fix parser issues quickly, the connector framework and connector parser updates are now delivered as separate releases. The connector parser update releases will be released monthly on ArcSight Marketplace.

You can download parser releases to your workstation to be applied on standalone connectors, or, starting with ArcSight Management Center (ArcMC) version 2.5, for ease of upgrade and integration, you can use ArcMC to retrieve parser releases directly from ArcSight Marketplace for locally/remotely managed connectors.

Each connector parser release is supported and certified with a specific connector framework release. For example:

  • 7.13.1 and 7.13.2 parser releases are supported with 7.13.0 SmartConnector Framework Release
  • 7.14.1, 7.14.2 and 7.14.3 parser releases are supported with 7.14.0 SmartConnector Framework Release
  • 7.15.1 and 7.15.2 parser releases are supported with 7.15.0 SmartConnector Framework Release

Minimum Requirements


  • For details refer to the release notes.

Releases

Release
Size
Date
ArcSight-7.15.2.8312.0-ConnectorParsers.aup 7.15.2.8312.0
9.2 MB
  |  
Jun 17, 2020
More info Less info
Product compatibility
Version 7.15.0
Management Center (ArcMC)
Version 2.7 · 2.8 · 2.9
Transformation Hub
Version 3.0 · 3.1
Release notes

7.15.2.8312.0 version information

SmartConnectors Support Recently added:

  • Check Point Syslog, added support for R80 FDE, R80 MEPP and R80 Endpoint Security Console.
  • Microsoft Office 365, Added support to Compliance events in Exchange & Data Insights REST API events.
  • Microsoft Windows Event Log Native:
    • Added support for Microsoft Windows Bits Client Event Log.
    • Added the following events:
      • Event 6
      • Event 8
    • Added support to ESENT application events.
    • Added the following events to Microsoft Sysmon Logs:
      • Event 14
      • Event 19
      • Event 20
      • Event 21
    • Added support for Microsoft-Windows-WMIActivity/Trace Log (only event Id 11).
    • Added support for Microsoft Windows-WMI-Analytic and Operational.

Fixed issues and Enhancements:

  • Cisco ASA Syslog
  • Cisco ISE Syslog
  • Dell SonicWALL Syslog
  • IP Flow (Netflow/J-Flow)
  • Microsoft Windows Event Log Native
  • VMware ESXi Server Syslog

For complete release information, see the Release Notes available from the Micro Focus Software Community at:https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English
ArcSight-7.15.1.8305.0-ConnectorParsers.aup 7.15.1.8305.0
9.2 MB
  |  
May 21, 2020
More info Less info
Product compatibility
Version 7.15.0
Management Center (ArcMC)
Version 2.7 · 2.8 · 2.9
Transformation Hub
Version 3.0 · 3.1
Release notes

7.15.1.8305.0 version information

SmartConnectors Support Recently added:

  • IBM AIX Audit Syslog, added support for IBM AIX Audit syslog version 7.2.
  • Microsoft Windows Event Log Native, Added support to the following events:
    • Microsoft-Windows-Security-Auditing
    • Microsoft DNS Server Analytics

Fixed issues and Enhancements:

  • Check Point Syslog
  • Cisco ASA Syslog
  • Cisco ACS Syslog
  • Cisco Meraki Syslog
  • Cisco Wireless LAN Controller Syslog
  • Dell SonicWALL Syslog
  • HPE Integrated Lights-Out Syslog
  • Infoblox NIOS Syslog
  • Juniper Firewall ScreenOS Syslog
  • Juniper JUNOS Syslog
  • Linux Audit Syslog
  • McAfee ePolicy Orchestrator DB
  • Microsoft DNS Trace Log Multiple Server File
  • Microsoft Office 365
  • Microsoft Windows Event Log Native:
    • MS Sysmon Logs
    • Security Event Mappings
  • MS IIS Multiple Server File
  • Symantec Messaging Gateway Syslog
  • UNIX OS Syslog
  • VMware Web Services

For complete release information, see the Release Notes available from the Micro Focus Software Community at:https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English
ArcSight-7.14.3.8270.0-ConnectorParsers.aup 7.14.3.8270.0
9.1 MB
  |  
Mar 18, 2020
More info Less info
Product compatibility
Version 7.14.0
Management Center (ArcMC)
Version 2.7 · 2.8 · 2.9
Transformation Hub
Version 3.2 · 3.0 · 3.1
Release notes

7.14.3.8270.0 version information

SmartConnectors Support Recently added:

  • Blue Coat Proxy SG Multiple Server File added support for versions 6.7 and 7.x
  • SNMP Unified added support for RSA Authentication Manager version 8.3.

Fixed issues and Enhancements:

  • Check Point Syslog
  • Cisco IOS Syslog
  • Cisco IronPort Email Security Appliance Syslog
  • Cisco NX-OS Syslog
  • Cisco Secure ACS Syslog
  • Cisco Wireless LAN Controller Syslog
  • Juniper JUNOS Syslog
  • Pulse Secure Pulse Connect Secure Syslog
  • UNIX OS Syslog
  • VMware ESXi Server Syslog

For complete release information, see the Release Notes available from the Micro Focus Software Community at: https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English
ArcSight-7.14.2.8258.0-ConnectorParsers.aup 7.14.2.8258.0
9.1 MB
  |  
Feb 20, 2020
More info Less info
Product compatibility
Version 7.14.0
Management Center (ArcMC)
Version 2.7 · 2.8 · 2.9
Transformation Hub
Version 3.2 · 3.0 · 3.1
Release notes

7.14.2.8258.0 version information

SmartConnectors Support Recently added:

  • UNIX OS Syslog added partial support for RHEL 7.6
  • Symantec Endpoint Protection DB added support for Symanted EndPoint Protection 14.2
  • MS Windows Event Log Native added Microsoft Windows Server 2019 as a supported installation platform.

Fixed issues and Enhancements:

  • McAfee ePolicy Orchestrator DB
  • IBM Security Access Manager Syslog
  • Symantec Endpoint Protection DB
  • Oracle Audit Syslog
  • Microsoft Office 365
  • Amazon Web Services CloudTrail
  • MS Win Event Log Native Security Event Mappings
  • Microsoft Azure Monitor Event Hub

For complete release information, see the Release Notes available from the Micro Focus Software Community at: https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English
ArcSight-7.14.1.8253.0-ConnectorParsers.aup 7.14.1.8253.0
9.0 MB
  |  
Jan 16, 2020
More info Less info
Product compatibility
Version 7.14.0
Management Center (ArcMC)
Version 2.5 · 2.7 · 2.8
Release notes

7.14.1.8253.0 version information

SmartConnectors Support Recently added:

  • MS Windows Event Log Native:
    • Microsoft DefenderAntivirus
    • Added support for event 104 (Log clear event)
  • McAfee ePolicy Orchestrator DB for:
    • Threat Intelligence Exchange Server 2.3 with ePO 5.3.
    • Policy Auditor File(PA File) and Policy Auditor Rule (PA Rule) version 6.4 with ePO 5.10
  • MS Office 365:
    • Azure AD events
    • Exchange Online events
    • Sharepoint Online events
    • One Drive events
  • AWS CloudTrail:
    • WAF and WAF-Regional services
    • SecurityHub services
    • AWS Inspector services
    • CloudFormation services

Fixed issues and Enhancements:

  • MS Office 365
  • Cisco Asa Syslog
  • Barracuda Firewall NG F-Series Syslog
  • Cisco Wireless LAN Controller Syslog
  • TippingPoint SMS Syslog
  • Check Point Syslog
  • Proofpoint Enterprise Protection and Enterprise Privacy Syslog
  • Sybase Adaptive Server Enterprise DB
  • Linux Audit Syslog
  • F5 BIG-IP Syslog
  • Cisco ISE Syslog
  • MS WINS Server Windows Event Log Native

For complete release information, see the Release Notes available from the Micro Focus Software Community at:https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English
ArcSight-7.13.2.8187.0-ConnectorParsers.aup 7.13.2.8187.0
8.8 MB
  |  
Sep 19, 2019
More info Less info
Product compatibility
Management Center (ArcMC)
Version 2.5 · 2.7 · 2.8
Release notes

7.13.2.8187.0 version information


SmartConnectors Support Recently added:

  • McAfee ePolicy Orchestrator DB for:
    • Drive Encryption (DE) with ePO 5.10
    • Orion Audit with ePO 5.10
    • Rogue System Detection (RSD) with ePO 5.10
    • SiteAdvisor Enterprise (SAE) with ePO DB 5.10
    • Application and Change Control (SolidCore) with ePO 5.10
    • VirusScan Enterprise with ePO DB 5.10
    • McAfee Agents (MA) with ePO 5.10
  • McAfee Network Security Manager DB (ID-based) for version 9.2
  • McAfee Network Security Manager DB (Time-based) for version 9.2
  • MS Windows Event Log Native:
    • Microsoft AntiMalware
    • Microsoft Sysmon Logs
  • Oracle Audit Vault DB for version 12.2.X


Fixed issues and Enhancements:

  • Cisco IOS Syslog
  • Cisco ASA Syslog
  • F5 BIG-IP Syslog
  • IBM SiteProtector DB
  • IP Flow (Netflow/J-Flow)
  • MS Office 365


For complete release information, see the Release Notes available from the Micro Focus Software Community at:https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English
ArcSight-7.13.1.8184.0-ConnectorParsers.aup 7.13.1.8184.0
8.7 MB
  |  
Aug 21, 2019
More info Less info
Product compatibility
Management Center (ArcMC)
Version 2.5 · 2.7 · 2.8
Release notes

7.13.1.8184.0 version information


SmartConnectors Support Recently added:

  • Checkpoint Syslog for version R.80.20
  • McAfee ePolicy Orchestrator DB for:
    • ENS 10.6.1 with both ePO 5.3 ePO 5.9 and ePO 5.10
    • Security for Microsoft SharePoint (MSMS) 3.5 with ePO 5.10
    • Data Loss Prevent (DLP) 11.x with ePO 5.10
    • HIPS, DXL modules with ePO 5.10
    • Threat Intelligence Exchange 2.1 on ePO 5.10
  • Microsoft Local Administrator Password Solution
  • MS Exchange PowerShell for 2016 Admin Audit and Access Auditing events.
  • MS Windows Event Log Native
  • Oracle WebLogic Server File for WebLogic Access version 12.1.3
  • Rapid7 NeXpose XML File for version 6.5.43


Fixed issues and Enhancements:

  • Juniper JUNOS Syslog
  • Cisco IOS Syslog
  • Check Point Syslog
  • MS DNS Trace Log Multiple Server File


For complete release information, see the Release Notes available from the Micro Focus Software Community at:https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English

Resources

Similar items

Similar apps are based on app category, product compatibility, popularity, rating and newness. Some apps may not show based on entitlements. Learn more about entitlements.

Unsubscribe from notifications

You are receiving release updates for this item because you have subscribed to the following products:
If you unsubscribe, you will no longer receive any notifications for these products.
Tip: to update your subscription preferences, go to Manage Subscriptions from your Dashboard, uncheck the products you no longer want to receive notifications for, and click 'Save'.

Marketplace Terms of Service

In order to continue, you must accept the Marketplace Terms of Service and Micro Focus Terms of Service
Since you are downloading an app from the Micro Focus unified Marketplace using an Access Manager account, you need to also accept the Micro Focus Marketplace Terms of Service before you can continue. Use the link to review the Marketplace Terms of Service. Once complete check the, "I accept the Marketplace Terms of Service and the Micro Focus Terms of Service" box below and click accept to continue your download.


Your download has begun...

Your download has begun

Related content and resources

Your browser is not supported!

Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox

release-rel-2020-8-1-3011 | Thu Aug 6 03:14:12 PDT 2020