HP-UX Host Intrusion Detection System Version 4.2 Administration Guide

ManualsBrandsHP ManualsSoftwareHP-UX Host Intrusion Detection System Software

3 Getting Started with HP-UX HIDS...............................................................................43

HIDS Quick Start Guide.......................................................................................................................43

Agents...................................................................................................................................................44

System Manager....................................................................................................................................44

Starting HP-UX HIDS for the First Time..............................................................................................44

Operations Screens................................................................................................................................45

Basic Screen Actions..............................................................................................................................46

Selecting Entries in Lists..................................................................................................................46

Searching Entries.............................................................................................................................46

Sorting Entries.................................................................................................................................46

4 Using the System Manager Screen............................................................................47

Starting the HP-UX HIDS System Manager.........................................................................................49

Stopping the HP-UX HIDS System Manager.......................................................................................49

System Manager Components..............................................................................................................49

Starting HP-UX HIDS Agents...............................................................................................................51

Getting the Status of Agent Hosts........................................................................................................51

Resynchronizing Agent Hosts..............................................................................................................52

Activating Schedules on Agent Hosts..................................................................................................53

Stopping Schedules on Agent Hosts.....................................................................................................53

Halting HP-UX HIDS Agents...............................................................................................................54

Accessing Other Screens.......................................................................................................................55

Schedule Manager Screen................................................................................................................55

Host Manager Screen.......................................................................................................................55

Network Node Screen.....................................................................................................................56

Preferences Screen...........................................................................................................................56

Returning to the System Manager Screen.......................................................................................56

5 Using the Schedule Manager Screen........................................................................57

The Schedule Manager..........................................................................................................................57

Creating a Surveillance Schedule....................................................................................................59

Opening the Schedule Manager Screen...........................................................................................60

Closing the Schedule Manager Screen............................................................................................60

Configuring Surveillance Schedules.....................................................................................................60

Creating a New Surveillance Schedule...........................................................................................61

Copying a Surveillance Schedule....................................................................................................61

Modifying a Surveillance Schedule.................................................................................................62

Renaming a Surveillance Schedule..................................................................................................62

Deleting a Surveillance Schedule....................................................................................................63

Undoing and Redoing Changes......................................................................................................63

Saving a Surveillance Schedule.......................................................................................................63

Configuring Surveillance Groups.........................................................................................................64

Creating a New Surveillance Group...............................................................................................64

Copying a Surveillance Group........................................................................................................64

Modifying a Surveillance Group.....................................................................................................65

Renaming a Surveillance Group......................................................................................................65

Deleting a Surveillance Group........................................................................................................66

Undoing and Redoing Changes......................................................................................................66

Saving a Surveillance Group...........................................................................................................66

Configuring Detection Templates.........................................................................................................66

Modifying a Property Value in a Template.....................................................................................67

Undoing and Redoing Changes......................................................................................................69

Suggested Best Practices..................................................................................................................69

4 Table of Contents