ArcSight ESM glossary and terminology meanings
I am learning the ArcSight ESM and have been thrown in the deep end with it.
I am wanting to know if there is a glossary or a complete list of the meanings of the headings used in the system.
For example the Fields: Target User Name, Device Event Class Id, Agent Address etc etc- including Op meanings.
I hope this makes sense to who ever reads this. Until I get on an Administrator and Analyst ESM course I am learning on the job so your help and assistance will be greatly appreciated and respected.
Re: ArcSight ESM glossary and terminology meanings
I would like to recommend You to take a look at this guide, some of fields are explaining here: https://community.microfocus.com/t5/ESM-and-ESM-Express/Micro-Focus-Security-ArcSight-ESM-101/ta-p/1661003