# |
Test Name |
Result Details |
11 |
Test presence of CollPack |
IBM_Security-Network-IPS_6.1r1-Pre1.spz.zip file not found |
12 |
Test presence of EULA in collpack |
|
21 |
Verify single default CONNECTION METHOD |
Found 2 nodes:
-- NODE --
DATABASE-- NODE --
FILE |
22 |
Ensure all taxonomy is valid |
Line TaxonomyKey,Target,SubTarget,Action,SubAction,EventTaxonomy,EventOutcome
in taxonomy.map had problems: | Target unrecognized | SubAction unrecognized |
24 |
Verify DeviceName with RV31 |
|
28 |
Verify Collector Pack UUID Conflict |
UUID is not valid or it may be assigned to another plugin or check for typo in collector name
Value in Repository = IBM_Proventia-Management-SiteProtector_6.1,0640AA70-534C-102C-AA09-001D92E06CCF
Value in Package.xml= IBM_Security-Network-IPS_6.1,0640AA70-534C-102C |
29 |
Verify Collector Pack Controls |
Control 'Global Setup' is not found in package.xml
Control 'Dashboard Status' is not found in package.xml
Control 'Implementation Audit Trail' is not found in package.xml
Control 'Event Trends' not found in package.xml
Control 'Collector Management' is not found in package.xml |
31 |
All events should have DeviceEventTime, DeviceEventTimeString, EventName, Message, Severity |
No input file; could not test assertion |
32 |
All events should have an Observer IP or hostname |
No input file; could not test assertion |
33 |
All events should report the Collector name and UUID |
No input file; could not test assertion |
401 |
Account events (create, delete, modify, enable, disable, change password) should have InitUserName |
No input file; could not test assertion |
402 |
Account events (create, delete, modify, enable, disable, change password) should have TargetUserName |
No input file; could not test assertion |
403 |
All account queries should have TargetUserName |
No input file; could not test assertion |
404 |
User Login events should have TargetUserName |
No input file; could not test assertion |
405 |
User Logout should have InitUserName |
No input file; could not test assertion |
411 |
Trust events (create, delete, modify) should have InitUserName |
No input file; could not test assertion |
412 |
Trust events (create, delete, modify) should have TargetTrustName |
No input file; could not test assertion |
413 |
Trust events (query) should have TargetTrustName |
No input file; could not test assertion |
414 |
Trust events (associate, deassociate) should have InitUserName |
No input file; could not test assertion |
415 |
Trust events (associate, deassociate) should have TargetTrustName and TargetUserName |
No input file; could not test assertion |
416 |
Resource access to trust (grant, revoke) should have InitUserName |
No input file; could not test assertion |
417 |
Resource access to trust (grant, revoke) should have TargetTrustName and TargetDataName |
No input file; could not test assertion |
418 |
Resource access to user (grant, revoke) should have InitUserName |
No input file; could not test assertion |
419 |
Resource access to user (grant, revoke) should have TargetUserName and TargetDataName |
No input file; could not test assertion |
421 |
DataItem events (create, delete, modify) should have InitUserName |
No input file; could not test assertion |
422 |
DataItem events (create, delete, modify) should have TargetDataName |
No input file; could not test assertion |
423 |
DataItem events (open, close, modify, query) should have InitUserName |
No input file; could not test assertion |
424 |
DataItem events (open, close, modify, query) should have TargetDataName |
No input file; could not test assertion |
425 |
DataItem query attributes event should have TargetDataName |
No input file; could not test assertion |
431 |
Session Modification events should have InitUserName |
No input file; could not test assertion |
441 |
System events (start, shutdown) should have InitUserName |
No input file; could not test assertion |
442 |
System events (start, shutdown) should have TargetHostName or TargetIP |
No input file; could not test assertion |
443 |
Service events (install, remove, enable, disable, invoke, terminate, config, modify) should have InitUserName |
No input file; could not test assertion |
444 |
Service events (install, remove, enable, disable, invoke, terminate, config, modify) should have TargetServiceName |
No input file; could not test assertion |
445 |
Service events (config, query) should have TargetServiceName |
No input file; could not test assertion |
451 |
Resource events (backup) should have InitUserName |
No input file; could not test assertion |
452 |
Resource events (backup) should have TargetDataName |
No input file; could not test assertion |
453 |
Resource events (corrupt, exhaust) should have TargetDataName |
No input file; could not test assertion |
461 |
All WorkFlow events should have TargetDataName and TargetDataContainer |
No input file; could not test assertion |
471 |
Malware infected events should have TargetDataName |
No input file; could not test assertion |
472 |
Malware infected events should have TargetHostName or TargetIP |
No input file; could not test assertion |
Comparison of this version with previous prototype/beta version.
Comparison of this version with previous released version.