New Features and Functionality
Expanded Storage with the Secure Network Analytics Data Store
You can now deploy a hardware or virtual Secure Network Analytics Data Store and Flow Collector with your Secure Network Analytics Manager for expanded Firepower event storage capacity. When you deploy your Secure Network Analytics appliances, during First Time Setup, you can choose to configure your appliances for deployment with a Data Store, and for use as part of a Cisco Security Analytics and Logging (On Premises) deployment.
 Important |
After you choose to configure your Secure Network Analytics Manager or Flow Collector for use with Cisco Security Analytics and Logging (On Premises), you cannot update the appliance's configuration to change this. You must RFD the appliance if you select the wrong choice. Enable this only if you plan to use Secure Network Analytics for Cisco Security Analytics and Logging (On Premises) to store your Firepower event information. |
See the Security Analytics and Logging (On Premises): Firewall Event Integration Guide for more information on the integration, Install Version 7.3.x with Hardware Appliances for more information on deploying Secure Network Analytics hardware with a Data Store, and Install Version 7.3.x with Virtual Appliances for more information on deploying virtual Secure Network Analytics appliances with a Data Store.
Remote Query from the Firepower Management Center
You can now query your events stored within Secure Network Analytics from your Firepower Management Center. See the Security Analytics and Logging (On Premises): Firewall Event Integration Guide for more information on configuring this, and the Firepower Management Center OLH for more information on remote query functionality.
Configuration Wizard in the Firepower Management Center
You can now use a wizard in the Firepower Management Center to set up Cisco Security Analytics and Logging (On Premises) for all Firepower Management Center users. See the Security Analytics and Logging (On Premises): Firewall Event Integration Guide for more information on how to use the wizard.
Event Viewer Search
The Cisco Security Analytics and Logging (On Premises) app event viewer now allows you to search for strings within events, to more quickly find specific events.
Feedback