Requirements for MDR Solutions
What will the data source needed when implementing a Manage Detection and Response Solution of Sangfor? HiHi,Please find below the main components of the MDR Solution. All of these components are responsible for reporting various data, such as traffic, security, and user identification, to the esteemed Cyber Command.
The Minimum Requirement is ES but if you want a full feature you must add NGAF and Cyber Command. Sangor ES
NGAF
IAG
Cyber Command Sangor ES
STA
NGAF
IAM/IAG
Cyber Command From documentation, The ES is the very core of data source. Data sources are NGAF as Firewall, Cyber Command for NDR and ES for EDR. The best of the Best is Cyber Command, IAM, ES, and NGAF. Endpoint Data: Sangfor's Endpoint Detection and Response (EDR) solution, such as Sangfor Endpoint Secure, collects and analyzes data from endpoints, including logs, processes, network connections, and file activity
Network Data: Sangfor's NGAF (Next-Generation Application Firewall) can be integrated with the MDR solution to provide network-level visibility and threat detection
page:
[1]
2