Duplicate rules in the Policy Editor
Last Modified: 2022-10-28 20:10:19 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Duplicate rules in the Policy Editor
Technical Articles ID:
KB91355
Last Modified: 2022-10-28 20:10:19 Etc/GMT Environment
SIEM Enterprise Security Manager (ESM) 11.x
Problem
During the installation of content packs, you don't see a notification similar to the following: 47-4000088, 47-4000132, 47-4000136, 47-4000147. After installation of the content pack or packs, duplicate rules appear in the Policy Editor. NOTE: The notification shown above was generated during the installation of the Malware content pack. Cause
One or more content packs were installed. A content pack can have its own set of standard rules. These rules are unique and have a different signature ID.
Solution
When a content pack is installed, you can find information regarding the rules to be installed in the details list. Disable the duplicate rules.
Related Information
For more information regarding content packs, highlight the pack to be installed. Highlighting the pack lists all the details. For more information about content packs, see the following links:
Affected ProductsLanguages:This article is available in the following languages: |
|