Microsoft Advanced Threat Analytics announcement
-
Link
Here you can find discussions on Microsoft Advanced Threat Analytics or ask a question to the community.
For official product support, please contact Microsoft Customer and Services Support via http://support.microsoft.com .
For the latest product documentation, please check our TechNet library at: http://aka.ms/ata-technet
-
0 VotesRADIUS Accounting
If we forward RADIUS Accounting information to ATA, will this, in theory, reduce the number of false positives we see for Pass the ticket from VPN users? Or will this data not be used to ...Unanswered | 7 Replies | 66 Views | Created by ArchedMeerkat - Friday, October 12, 2018 1:30 PM | Last reply by Eli Ofek - 3 hours 37 minutes ago
-
1 Votes
ATA still in development?
At Ignite 2018 I didn't see any talk about ATA. Is it still being developed with new versions coming out? -
0 Votes
Port 443 is bound to another process. Cannot install ATA 1.9
Hi, I decided to test ATA and downloaded v1.9. Installation of ATA 1.9 on ANY Windows server 2016 stops with message: "Port 443 is bound to another process. ...Unanswered | 10 Replies | 181 Views | Created by Thomas M.T. _ - Wednesday, September 26, 2018 3:41 PM | Last reply by Thomas M.T. _ - 17 hours 34 minutes ago -
0 Votes
Change syslog suser field to UPN or SAMAccountName rather than display name
The syslog output seems to use display name rather than a real login name. This makes correlation with other logs hard in the receiving SIEM. Can this be configured in ...Unanswered | 1 Replies | 36 Views | Created by H Kelley - Friday, October 12, 2018 12:54 PM | Last reply by Eli Ofek - Friday, October 12, 2018 8:44 PM -
0 Votes
Gateway failed to sync the latest configuration from the center
Hi guys, ATA CENTER Console reports me this notification, after i updated the certificate for the ata center console ...Unanswered | 1 Replies | 34 Views | Created by flova - Friday, October 12, 2018 9:12 AM | Last reply by Eli Ofek - Friday, October 12, 2018 1:01 PM -
1 Votes
Password Management solutions?
Does Microsoft offer any password management solutions? We have hundreds of service accounts that we maintain passwords for and today keep them in an encrypted file (with a password on that file). ...Proposed | 2 Replies | 67 Views | Created by jrauman - Thursday, October 11, 2018 3:11 PM | Last reply by KHart85 - Friday, October 12, 2018 11:08 AM -
0 Votes
Asking for the explanation behind the Source Computer Resolution Method column values in the ATA alerts
Hello, I received one "Identity theft using pass-the-ticket attack" alert indicating that one person’s Kerberos tickets were stolen from 1 ...Answered | 11 Replies | 682 Views | Created by MSSOC - Sunday, October 8, 2017 11:00 AM | Last reply by Eli Ofek - Friday, October 12, 2018 12:35 AM -
0 Votes
ATA 1.9 configuration
Hi all, We have implemented ATA 1.9 and installed LWGW on all domain controllers. Do I need to configure event forwarding with 1.9? Also ...Unanswered | 5 Replies | 81 Views | Created by Onurt - Tuesday, October 9, 2018 7:15 PM | Last reply by Eli Ofek - Thursday, October 11, 2018 9:09 AM -
0 Votes
Installing ATA gateway and ATA server on the same physical server
Hello Everyone, I am new to ATA myself and I am in the process of setting up the all the needed components to get the ATA implemented. I plan to setup the ...Unanswered | 2 Replies | 78 Views | Created by ChrisDPace - Tuesday, October 9, 2018 2:23 PM | Last reply by ChrisDPace - Wednesday, October 10, 2018 12:48 PM -
0 Votes
Malicious replication of Directory Services
Similar to this question, but the IPs are known good domain controllers ...Unanswered | 7 Replies | 380 Views | Created by James H Anderson II - Friday, April 27, 2018 7:17 PM | Last reply by Eli Ofek - Wednesday, October 10, 2018 8:28 AM -
0 Votes
attempted invasion?
Friends, I am sending the image below because I believe I am suffering an invasion attempt. Is that what I'm thinking? How ...Unanswered | 1 Replies | 79 Views | Created by Luis Wagner dos Santos - Monday, October 8, 2018 11:31 AM | Last reply by Andy Liu50 - Tuesday, October 9, 2018 1:47 AM -
0 Votes
ATA vs Live Migrations
Hello , We do have three hyper-v server as follows: HV01HV02HV03 We do have 30 Virtual machines all are windows distributed among hyper-V's as ...Answered | 3 Replies | 132 Views | Created by Spar982 - Thursday, October 4, 2018 7:14 AM | Last reply by Spar982 - Monday, October 8, 2018 9:22 AM -
0 Votes
Use ATA to detect cross-domain traffic (over a trust boundary)
We have domains A and B in a bi-directional trust and run ATA instances in both domains. Is there a way to detect account usage over/via the trust using ATA? Do ...Unanswered | 3 Replies | 151 Views | Created by H Kelley - Wednesday, September 26, 2018 11:34 PM | Last reply by Eli Ofek - Sunday, October 7, 2018 10:41 AM -
0 Votes
How can i disable CRL Verification
HI team i am using ATA 1.7 version ,MY ATA and lightweight gateway domain controllers are not internet facing . every time service restart it takes lot of time and timed out ,what i observed that CRL ...Unanswered | 1 Replies | 79 Views | Created by mctbhavin - Wednesday, October 3, 2018 12:49 PM | Last reply by Andy Liu50 - Thursday, October 4, 2018 6:37 AM -
0 Votes
ATA Suspicious activity is not showing logged on Users
Hi..When i find suspicious activities on ATA console which are related to computer it's not showing the information who logged on that machine. But as per below article it's suppose to show the ...Unanswered | 1 Replies | 147 Views | Created by pabbin - Thursday, September 27, 2018 4:25 PM | Last reply by Eli Ofek - Thursday, September 27, 2018 10:07 PM -
0 Votes
Watch for abnormal activity - extra sensitivity
Is there a way to set a user's activity/resource monitoring to detect ANY/ALL new accesses (instead of whatever the default threshold is)? We occasionally have users we want to watch very ...Unanswered | 2 Replies | 172 Views | Created by H Kelley - Monday, September 24, 2018 2:16 PM | Last reply by H Kelley - Monday, September 24, 2018 8:41 PM -
1 Votes
What happens to the Gateways while the ATA Center is offline?
In the event of an extended outage of the ATA Center due to a failure of some sort, or even a shorter outage, such as a server hardware upgrade, or network change, what happens to the data being ...Unanswered | 2 Replies | 182 Views | Created by foxxyben - Thursday, September 20, 2018 1:29 PM | Last reply by foxxyben - Monday, September 24, 2018 6:16 PM -
0 Votes
Anchor Free Inc
Please help! yesterday when I was asked to update adobe flash- it didn't give option to stop download of The above program! It is Malware- By McAfee Safe Key? ...Unanswered | 1 Replies | 148 Views | Created by Leighton's - Sunday, September 23, 2018 8:58 PM | Last reply by Andy Liu50 - Monday, September 24, 2018 1:54 AM -
0 Votes
Report LDAPS / LDAP Connection for a Specific Computer
Hi, I am very new in MS ATA. How can I report / list LDAPS / LDAP connections from a computer to any Domain Controller? Best ...Unanswered | 1 Replies | 166 Views | Created by _Birdal - Tuesday, September 18, 2018 8:54 AM | Last reply by Andy Liu50 - Wednesday, September 19, 2018 2:09 AM -
0 Votes
Memory Leak in ATA version 1.9.7312.32791
The client I am working with is beginning a large Enterprise ATA deployment. Upon the initial roll out of the ATA Gateways configured with a mirror port to inspect packets ...Proposed | 13 Replies | 598 Views | Created by Securitt - Wednesday, September 5, 2018 11:44 AM | Last reply by Eli Ofek - Monday, September 17, 2018 6:57 PM - Items 1 to 20 of 980 Next ›
Microsoft Advanced Threat Analytics announcement
-
Link
Here you can find discussions on Microsoft Advanced Threat Analytics or ask a question to the community.
For official product support, please contact Microsoft Customer and Services Support via http://support.microsoft.com .
For the latest product documentation, please check our TechNet library at: http://aka.ms/ata-technet
