Configuring Nozomi Networks SCADAguardian

To receive the alert information, Ivanti Policy Secure details are added in SCADAguardian admin interface.

1. Select Administration > Data Integration.

2. Click +Add to add new Endpoint.

3. Under Endpoint Configured as, select Common Event Format (CEF).

4. Under To URL, enter the Protocol (TCP or UDP), IP address of Ivanti Policy Secure, and port number.

5. Select the checkbox Enable sending Alerts.

6. Enter the filter query if only specific alert information should be sent to Ivanti Policy Secure.

For example, if administrator wants to send information to Ivanti Policy Secure for alerts with risk score of more than 6, specify “where risk > 6" in query filter.