- Advanced Analytics
- Understand the Basics of Advanced Analytics
- Configure Log Management
- Set Up Admin Operations
- Set Up Authentication and Access Control
- Additional Configurations
- Configure Rules
- Exabeam Threat Intelligence Service
- Threat Intelligence Service Prerequisites
- View Threat Intelligence Feeds
- Threat Intelligence Context Tables
- View Threat Intelligence Context Tables
- Assign a Threat Intelligence Feed to a New Context Table
- Create a New Context Table from a Threat Intelligence Feed
- Check ExaCloud Connector Service Health Status
- Exabeam Cloud Telemetry Service
- Manage Security Content in Advanced Analytics
- Health Status Page
Health Status Page
The Health Status page offers an on-demand assessment of the Exabeam pipeline. The assessment has three categories:
General Health: General health tests that all of the back-end services are running - database storage, log feeds, snapshots, CPU, and memory.
Connectivity: Checks that Exabeam is able to connect to external systems, such as LDAP and SIEM.
Log Feeds: This section reports on the health of the DC, VPN, Security Alerts, Windows Servers, and session management logs.
In all of the categories, the statuses are color-coded as follows: GREEN = good, YELLOW = warning, and RED = critical.
Located on the homepage are the Proactive Health Checks that alert administrations when:
Any of the core Exabeam services are not running
There is insufficient disk storage space
Exabeam has not been fetching logs from the SIEM for a configurable amount of time