CSA installed and in test mode collecting events. Working through rules, and policies. (If anyone has a down and dirty way to do that, I would greatly appreciate it, CSA is a huge can of worms)
So, under Security agent, event, alert. I set it up to send an email for ALL ALERTS. Simply to see if it works. I enter a valid internal company email, as the Recipient, and a valid company internel email as the sender. For the address of mail server I have Servername.network.net. Put in a 'subject' line.
Then after a few minutes I get an event, and this shows up.
410 6/20/2007 3:11:13 PM - Warning The notification process failed to send 1 alert(s) using mail alert 'Network and Security Team Notify'.
123 similar events (same Type/Rule ID/Application)Find Similar
Tried changing the sender / the recipient, the server to the ip address. Still the same message. What am I doing wrong. Doesnt look that difficult.
I think you have to create an event set from the event set page to include only alerts. The option for alert only is not available by default when configuring events to be sent to your email. Following link may help you to learn how to create an event set that you can use to configure an alert:
Yes. This is my primary mail server for this location. The same one I get my mail from. I have other applications that use this functionality.. Example - my AS400, Veritas Backup Exec.. I get notices from those applications, regarding alerts, and issues.
The CSA server is on the same lan / subnet / and can ping / communicate with the Exchange server.
For example.. backup exec.. the information is configured the same.. "Server.company.net" with a bogus email. Veritas@company.com That is not a valid Active directory account. Just to know where it comes from.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...