NetIQ Sentinel Exploit Detection & Advisor - Renewal Business Support Subsc

Mfg.Part: 877-001488 | CDW Part: 1827485 | UNSPSC: 43232804
Availability: In Stock Ships today if ordered within 11 hrs 54 mins
Request Pricing
Product Details
  • Renewal Business Support Subscription (1 year)
  • 1 instance
  • MLA
  • VLA
  • ESD
View Full Product Details
Better Together
Quick View
Total Price:

Product Overview

Main Features
  • Renewal Business Support Subscription (1 year)
  • 1 instance
  • MLA
  • VLA
  • ESD
Security and regulatory compliance are top priorities for today's businesses - including yours. Because these issues are complex, companies often handle them manually through time-consuming, inefficient and very expensive processes. If this describes your current approach, you should consider Sentinel.

Sentinel delivers unmatched visibility into your network. This award-winning solution automates the monitoring of your IT controls for effectiveness so you can detect and resolve threats in real time - before they affect your business. Sentinel also provides you the documented evidence needed to meet stringent regulatory and industry compliance requirements. With Sentinel, your IT infrastructure can automatically adapt to changing business demands and regulatory policies. You will also have the tools you need to reduce security and compliance costs, manage risk more effectively, and improve security metrics and compliance reporting.

NetIQ Sentinel Exploit Detection & Advisor ( v. 6.0 ) - Renewal Total Care is rated 3.7 out of 5 by 3.
Rated 3 out of 5 by from It provides real time security event analytics. Take a look at other vendors like LogRhythm. Valuable Features:Scalability is the best feature.Improvements to My Organization:It provides real time security event analytics.Room for Improvement:Take a look at other vendors like LogRhythm. They are light years ahead of where this product is.Use of Solution:I have used this solution for seven years.Stability Issues:We did have issues with stability. Java is not stable.Scalability Issues:We did not have scalability issues.Technical Support:Support is good, but only for backend support. Both Level-1 and Level-2 support teams are terrible.Previous Solutions:We did not have a previous solution.Initial Setup:The setup was complex.Cost and Licensing Advice:It's probably not a product that I would recommend to anyone.Other Solutions Considered:We did not evaluate other options.Other Advice:The amount of time spent implementing this solution, tweaking it to suit our needs, and then maintaining it, ended up being the same as building one from scratch, using something like ELK.Disclaimer: I am a real user, and this review is based on my own experience and opinions.
Date published: 2017-09-11
Rated 4 out of 5 by from The query tool of the web UI is so cool. Valuable Features:The query tool of the web UI is so cool! (Lucene-based, filters-based on taxonomy). The web interface gives you the ability to design, at query time, a simple report on the fly.Improvements to My Organization:Sentinel can help our customers meet PCI, and other requirements based on the reporting and control of related components. Questions like "who has access to that asset" and "who had access in such and such moment" can be solved quickly.Room for Improvement:The Java desktop tool and the WMI integration (WECS server architecture).The integration UI and modules deployment can improve.In my opinion, the web interface can manage all the functionalities and configurations; no Java desktop app is necessary.The Java app functions can be migrated to the web interface.On the other hand, WMI integration, can be improved by removing the WECS collector. Sentinel Node can include all the functions. If an escenary needs more power, just deploy another Sentinel node (all in one) that can help in multiples use cases, not just WECS.Use of Solution:As part of my work, I’m responsible for deployment, tuning, integrating, and using Sentinel for bank projects.Reporting IDE environments and processes is hard to take responsibility for, but not impossible.Some functions look great but, in practice, some key limitations turn the process into something opaque.Stability Issues:Java needs a lot of RAM!! Some queries (if you're not careful) can consume lots of memory and destabilize the instance of the product (or OS platform, including RHEL).Scalability Issues:We have not had scalability issues. Storage retention policies and schema, online and offline, are very nice.If Sentinel is integrated with Identity Manager and User Application Portal, the solution runs simply perfect!Technical Support:In my experience, support really rocks it! I had an opportunity to meet great people, very human and engineers.Previous Solutions:Yes.. sure... Syslog!!SIEM is not a simple logging tool. The big clients (banks, big industries, government, etc.) need a solution according their size.Initial Setup:Just follow the manuals after reading them. Linux knowledge helps, be cause Linux opens your hard mind. It is complex for mortals, familiar for "Linuxers".Cost and Licensing Advice:Sentinel is not for home use. Others versions are available by the same vendor, like Sentinel Rapid Deployment or Reporting Module that are offered for different needs. In other words, if price is a problem, go open source, not world class tool like Sentinel. NetIQ offers nice licence packages that can adjust better for some clients.Other Solutions Considered:RSA Security Analytics was an option, but as part of NetIQ/Novell Identity Manager Deployment we prefer NetIQ SIEM Tools (integrations capabilities). It depends client needs whether another solution, like RSA Analytics, is the appropriate.Other Advice:Be careful with requirements, production resources are really needed. Be clear with objectives, and test it before use. Understanding SIEM concepts is basically the goal.Disclaimer: I am a real user, and this review is based on my own experience and opinions.
Date published: 2017-07-11
Rated 4 out of 5 by from Our intital setup was complex but mainly because of all the network variables we had. Valuable Features:<ul><li>Correlation Engine simpleness</li><li>Visual agent deployment</li><li>Stream based solution performed by iscale bus (no latency due to the database layer) </li></ul>Improvements to My Organization:<ul><li>Better security incident analysis</li><li>New scopes for security events and correlation</li><li>Better performances on device failures actions</li></ul>Room for Improvement:<ul><li>Correlation Engine</li><li>Device support</li><li>Agent development flexibility</li></ul>Use of Solution:I worked on version 5 and then 6 for a total of 6 years. My personal score is 4 stars based on my experience with the latest version I worked on (probably version 7 should be much more better.)Deployment Issues:On version 5, builder was somewhat unstable during deployment -> workaround strong procedure with too many middle steps of saves.Stability Issues:The wizard agent module is very sensible to network changes and needs a restart on every network change (versions 5 and 6).Scalability Issues:I have not seen any issues with scalability.Previous Solutions:I had another SIEM installation (nFX) working for another application domain.Initial Setup:Complex but mainly because of all the network variables we had. Imagine to map firewalls rules passively and then request the ability from an external group not really involved in the installation.Implementation Team:Actually we were the system integrator and we provided a large enterprise solution.Other Solutions Considered:Novell SIEM was my second technology of this kind. Previously I experienced the nFX and later even the McAfee ESM and the Splunk ES.Other Advice:Be aware that without any technical support from NetIQ it could be very hard to administer.Disclaimer: I am a real user, and this review is based on my own experience and opinions.
Date published: 2016-10-23
  • y_2018, m_8, d_13, h_19
  • bvseo_bulk, prod_bvrr, vn_bulk_2.0.8
  • cp_1, bvpage1
  • co_hasreviews, tv_0, tr_3
  • loc_en_US, sid_1827485, prod, sort_[SortEntry(order=SUBMISSION_TIME, direction=DESCENDING), SortEntry(order=FEATURED, direction=DESCENDING)]
  • clientName_cdwg