ArcSight SmartConnector Parser Update

198209

Micro Focus Micro Focus Community

App Support Tiers

MICRO FOCUS SUPPORTED

Support via Micro Focus Software Support, with a ticket filed against the associated product.

PARTNER

Micro Focus offers a content partnership program for select partners. Support for Partner Content offerings is provided by the partner and not by Micro Focus of the Micro Focus community.

MICRO FOCUS COMMUNITY

Micro Focus Community Content is provided by Micro Focus for the benefit of customers, support for it is not available via Micro Focus Software Support but through specific community content forums.

COMMUNITY

Community Contributed Content is provided by Micro Focus customers and supported by them.

Micro Focus | Micro Focus Community

Monthly SmartConnector Parser Release
8,707 downloads

Description

To support newer device versions and to fix parser issues quickly, the connector framework and connector parser updates are now delivered as separate releases. The connector parser update releases will be released monthly on ArcSight Marketplace.

You can download parser releases to your workstation to be applied on standalone connectors, or, starting with ArcSight Management Center (ArcMC) version 2.5, for ease of upgrade and integration, you can use ArcMC to retrieve parser releases directly from ArcSight Marketplace for locally/remotely managed connectors.

Each connector parser release is supported and certified with a specific connector framework release. For example:

  • 7.11.1 parser release is supported with 7.11.0 SmartConnector Framework Release
  • 7.12.1 and 7.12.2 parser releases are supported with 7.12.0 SmartConnector Framework Release
  • 7.13.1 and 7.13.2 parser releases are supported with 7.13.0 SmartConnector Framework Release

Minimum Requirements


  • For details refer to the release notes.

Releases

Release
Size
Date
ArcSight-7.13.2.8187.0-ConnectorParsers.aup 7.13.2.8187.0
8.8 MB
  |  
Sep 19, 2019
More info Less info
Product compatibility
Version 7.13.0
Management Center (ArcMC)
Version 2.5 · 2.7 · 2.8
Release notes

7.13.2.8187.0 version information


SmartConnectors Support Recently added:

  • McAfee ePolicy Orchestrator DB for:
    • Drive Encryption (DE) with ePO 5.10
    • Orion Audit with ePO 5.10
    • Rogue System Detection (RSD) with ePO 5.10
    • SiteAdvisor Enterprise (SAE) with ePO DB 5.10
    • Application and Change Control (SolidCore) with ePO 5.10
    • VirusScan Enterprise with ePO DB 5.10
    • McAfee Agents (MA) with ePO 5.10
  • McAfee Network Security Manager DB (ID-based) for version 9.2
  • McAfee Network Security Manager DB (Time-based) for version 9.2
  • MS Windows Event Log Native:
    • Microsoft AntiMalware
    • Microsoft Sysmon Logs
  • Oracle Audit Vault DB for version 12.2.X


Fixed issues and Enhancements:

  • Cisco IOS Syslog
  • Cisco ASA Syslog
  • F5 BIG-IP Syslog
  • IBM SiteProtector DB
  • IP Flow (Netflow/J-Flow)
  • MS Office 365


For complete release information, see the Release Notes available from the Micro Focus Software Community at:https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English
ArcSight-7.13.1.8184.0-ConnectorParsers.aup 7.13.1.8184.0
8.7 MB
  |  
Aug 21, 2019
More info Less info
Product compatibility
Version 7.13.0
Management Center (ArcMC)
Version 2.5 · 2.7 · 2.8
Release notes

7.13.1.8184.0 version information


SmartConnectors Support Recently added:

  • Checkpoint Syslog for version R.80.20
  • McAfee ePolicy Orchestrator DB for:
    • ENS 10.6.1 with both ePO 5.3 ePO 5.9 and ePO 5.10
    • Security for Microsoft SharePoint (MSMS) 3.5 with ePO 5.10
    • Data Loss Prevent (DLP) 11.x with ePO 5.10
    • HIPS, DXL modules with ePO 5.10
    • Threat Intelligence Exchange 2.1 on ePO 5.10
  • Microsoft Local Administrator Password Solution
  • MS Exchange PowerShell for 2016 Admin Audit and Access Auditing events.
  • MS Windows Event Log Native
  • Oracle WebLogic Server File for WebLogic Access version 12.1.3
  • Rapid7 NeXpose XML File for version 6.5.43


Fixed issues and Enhancements:

  • Juniper JUNOS Syslog
  • Cisco IOS Syslog
  • Check Point Syslog
  • MS DNS Trace Log Multiple Server File


For complete release information, see the Release Notes available from the Micro Focus Software Community at:https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English
ArcSight-7.12.2.8163.0-ConnectorParsers.aup 7.12.2.8163.0
8.7 MB
  |  
Jun 19, 2019
More info Less info
Product compatibility
Version 7.12.0
Management Center (ArcMC)
Version 2.5 · 2.7 · 2.8
Release notes

7.12.2.8163.0 version information


SmartConnectors Support Recently added:

-MS Windows Event Log Native:

-Microsoft Windows Update Events

-Windows Powershell

-Microsoft-Windows PowerShell/Operational

-Sophos Anti-Virus DB version 10.8

-MS DNS Trace Log Multiple Server File for MS Windows Server 2019

-McAfee ePolicy Orchestrator DB for ENS 10.5 with ePO 5.10.

-McAfee ePolicy Orchestrator DB for MSME 8.6 with ePO 5.10.

-Tenable Nessus .nessus File for Nessus Vulnerability Analyzer (VA) Scanner version 8.3.1


Fixed issues and Enhancements:

-Proofpoint Enterprise Protection and Enterprise Privacy Syslog

-MS Windows Event Log Native

-HPE H3C Syslog

-HPE Aruba Mobility Controller Syslog

-Check Point Syslog

-Pulse Secure Pulse Connect Secure Syslog

-Cisco IronPort Email Security Appliance Syslog

-Oracle Unified Audit Trail DB

-Cisco ISE Syslog


For complete release information, see the Release Notes available from the Micro Focus Software Community at:https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English
ArcSight-7.12.1.8159.0-ConnectorParsers.aup 7.12.1.8159.0
8.7 MB
  |  
May 17, 2019
More info Less info
Product compatibility
Version 7.12.0
Management Center (ArcMC)
Version 2.5 · 2.7 · 2.8
Release notes

7.12.1.8159.0 version information


SmartConnectors Support Recently added:

-Dell Change Auditor DB 6.9

-McAfee Application and Change Control (SolidCore) 6.2 with ePO 5.3.McAfee ePolicy Orchestrator DB

-Symantec Endpoint Protection DB Category Virus and Agent Packet 14.

-Oracle Audit DB v12.cR2/18c.

-Oracle Audit XML File v12.cR2/18c.

-Oracle SYSDBA Audit Multiple Folder DB v12.cR2/18c.

-Oracle Audit Syslog 18c.

-Oracle Audit Windows Event Log Native 18c.

-Symantec Data Center Security DB v 6.7.

-UNIX Login/Logout File RHEL 7.6 events


Fixed issues and Enhancements:

-Apache HTTP Server Syslog

-Cisco ASA Syslog

-Cisco ISE Syslog

-Cisco Secure ACS Syslog

-Cisco IronPort Email Security Appliance File

-CitrixNet Scaler Syslog

-Dell Change Auditor DB

-HPE Aruba Mobility Controller Syslog

-IBM Site Protector DB

-Juniper JUNOS Syslog

-Juniper Firewall ScreenOS Syslog

-Linux Audit File

-Linux Audit Syslog

-McAfee ePolicy Orchestrator DB

-McAfee Network Security Manager ID based

-McAfee Network Security Manager DB (Time-based)

-MS DNS Trace Log Multiple Server File

-MS Forefront Threat Management Gateway File

-MS Office 365

-MS Windows Event Log Native

-Oracle Unified Audit DB

-Symantec Data Center Security DB

-Symantec Endpoint Protection DB

-Squid Web Proxy Server File

-UNIX Login/Logout


For complete release information, see the Release Notes available from the Micro Focus Software Community at:https://community.microfocus.com/t5/ArcSight-Connectors/ct-p/ConnectorsDocs

Languages
English
ArcSight-7.11.1.8143.0-ConnectorParsers.aup 7.11.1.8143.0
8.6 MB
  |  
Feb 19, 2019
More info Less info
Product compatibility
Version 7.11
Management Center (ArcMC)
Version 2.5 · 2.7 · 2.8
Release notes

7.11.1.8143.0 version information


SmartConnectors Support Recently added:

-McAfee ePolicy Orchestrator DB, version Microsoft SQL Server 2016 with ePO 5.9.


Fixed issues and Enhancements:

-Cisco ASA Syslog

-Cisco Secure ACS Syslog

-Juniper JUNOS Syslog

-IP Flow (Netflow/J-Flow)

-McAfee ePolicy Orchestrator DB

-Proofpoint Enterprise Protection and Enterprise Privacy Syslog

-Symantec Endpoint Protection DB

-VMware ESXi Server Syslog


For complete release information, see the Release Notes available from the Micro Focus Software Community at:https://community.softwaregrp.com/t5/ArcSight-Connectors/tkb-p/connector-documentation

Languages
English

Resources

Unsubscribe from notifications

You are receiving release updates for this item because you have subscribed to the following products:
If you unsubscribe, you will no longer receive any notifications for these products.
Tip: to update your subscription preferences, go to Manage Subscriptions from your Dashboard, uncheck the products you no longer want to receive notifications for, and click 'Save'.

Marketplace Terms of Service

In order to continue, you must accept the Marketplace Terms of Service
Since you are downloading an app from the Micro Focus unified Marketplace using an Access Manager account, you need to also accept the Micro Focus Marketplace Terms of Service before you can continue. Use the link to review the Marketplace Terms of Service. Once complete check the, "I accept the Marketplace Terms of Service" box below and click accept to continue your download.


Your browser is not supported!

Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox

release-rel-2019-12-1-1902 | Wed Dec 11 23:28:48 PST 2019