beautypg.com

Querying security events, Deleting security events – H3C Technologies H3C Intelligent Management Center User Manual

Page 513

background image

491

NOTE:

You can sort the WIPS Security Event List by all fields. Click the column label to sort the list by the
selected field. The column label allows you to toggle between the various sort options specific to each
field.

Querying security events

WSM provides basic query and advanced query. Basic query criteria include several key parameters

for quick search. Advanced query offers various query criteria for precise match.
To query security events:

1.

Click the Service tab.

2.

Select WLAN Manager > WIPS Management > Security Event from the navigation tree.
The WIPS Security Event List displays all security events.

3.

Perform a basic query:

a.

Enter the virtual security domain name or security event. WSM supports fuzzy matching for
this field.

b.

Click the Query icon .

The

WIPS Security Event List displays all security events matching

the query criteria.

c.

Clear the Query field, and click the Query icon

to display all security events.

4.

Perform an advanced query:

a.

Click next to the Query field to expand the Query area. Click it again to hide the Query
area.

b.

Specify one or more of the following query criteria:

{

Detected Device MAC—Enter a partial or complete MAC address of the device where the
security event occurred, in the format of xx:xx:xx:xx:xx:xx. WIPS supports fuzzy matching for
this field.

{

Detecting Device MAC—Enter a partial or complete MAC address of the device that detect
the security event, in the format of xx:xx:xx:xx:xx:xx. WIPS supports fuzzy matching for this

field.

{

Virtual Security Domain—Enter a partial or complete security domain name to which the
sensor that detected the security event belongs.

{

Receive Time—Select the time range during which the security event occurred. Options are
All, Last Day, Last Three Days, Last Week, and Last Month.

{

Event Type—Enter the security event type. WSM supports fuzzy matching for this field.

{

Severity Level—Select a severity level for the security event. Options are Emergency, Alarm,
Key, Error, Warning, Notification, Prompt, and Debugging.

c.

Click Query.
The WIPS Security Event List displays all security events matching the query criteria.

d.

Click Reset to clear the query criteria and display all security events.

Deleting security events

1.

Click the Service tab.

See also other documents in the category H3C Technologies Safety: