These were the error messages I received:
The search "Network - Substantial Increase in an Event - Rule" is related to the correlation search "Network - Event Count By Signature Per Hour - Context Gen" but it is not enabled even though the correlation search is; this will cause the correlation to fail
9/15/2016, 3:20:05 AM
The search "Network - Unusual Volume of Network Activity - Rule" is related to the correlation search "Network - Traffic Source Count Per 30m - Context Gen" but it is not enabled even though the correlation search is; this will cause the correlation to fail
9/15/2016, 3:20:05 AM
The search "Network - Substantial Increase in Port Activity (By Destination) - Rule" is related to the correlation search "Network - Port Activity By Destination Port - Context Gen" but it is not enabled even though the correlation search is; this will cause the correlation to fail
9/15/2016, 3:20:05 AM
The search "Network - Unusual Volume of Network Activity - Rule" is related to the correlation search "Network - Traffic Volume Per 30m - Context Gen" but it is not enabled even though the correlation search is; this will cause the correlation to fail
9/15/2016, 3:20:05 AM
The search "Endpoint - Host Sending Excessive Email - Rule" is related to the correlation search "Endpoint - Emails By Destination Count - Context Gen" but it is not enabled even though the correlation search is; this will cause the correlation to fail
9/15/2016, 3:20:05 AM
The search "Endpoint - Host Sending Excessive Email - Rule" is related to the correlation search "Endpoint - Emails By Source - Context Gen" but it is not enabled even though the correlation search is; this will cause the correlation to fail
9/15/2016, 3:20:04 AM
The list of indexes to be searched by default for the admin role includes the following summary indexes which may cause performance problems: summary
9/15/2016, 3:00:00 AM
↧