Knowledge Base

Yes many of EventSentry39s features can help organizations with the efforts to become and remain PCI compliant. The following features assist with PCI compliance: 1. Event Log Monitoring 2. Compliance Tracking Process Logon AD File Access Tracking 3. Log File Monitoring 4. File Checksum Monitoring 5. Service Monitoring 6. NTP Monito...

Yes you can download a customized version of the builtin Compliance event log package which is geared towards CJIS compliance from the Links section below. To import the package follow these steps: Download and unzip the file Open the EventSentry Management Console Rightclick the Packages container Select Import Pack...

Preparing to track: First consider which Compliance data types you need to capture and ensure that your audit settings in Windows are properly configured to track this data. For a checklist of which audit settings are required for each Compliance data type in EventSentry please see: https://www.eventsentry.com/documentation/help/html/tra...

Yes EventSentry can help with the following provisions of the Controlled Unclassified Information CUI Compliance requirement: 3.3.2 3.3.3 3.3.4 3.3.5 3.3.6 3.3.7 3.3.8 3.3.9 3.14.6 NetFlow

The easiest way to get notified in realtime whenever a user attempts to log on more than X times with a wrong password is by forwarding MicrosoftWindowsSecurityAuditing event 4625https://system32.eventsentry.com/security/event/4625. This event is logged to the Security event log whenever a user fails to logon. More...

The Federal Information Processing Standard FIPS Publication 1402https://csrc.nist.gov/publications/detail/fips/140/2/final is a U.S. government standard. It defines the minimum security requirements for cryptographic modules in IT products. EvenSentry DOES server components and agents work in Windows environments with FIPS 1402...

EventSentry can help users be compliant with MNJIS5002 and help secure CJI criminal justice information. The BCA package contains a number of event log rules that can detect a variety of security incidents including: Issues with the Windows audit subsystem Lateral movement on the network Performance issues Port scans initiat...