Effects of KB (Knowledge Base) on a unitary event in TIBCO LogLogic SEM
Article ID: KB0077536
Updated On:
| Products | Versions |
|---|---|
| TIBCO LogLogic Security Event Manager | all versions |
Description
The KB (Knowledge Base) will have only one effect on a unitary event and that is it may add information to this event.
Note that only two types of information can be modified/added:
- The node (name + category)
or
- The address (address + category) of the target or the source. If the event contains multiple pairs of the above information, the KB will only add or alter the first pair.
Note: This modification will only occur if the event contains data for one of the above fields. Then the KB will attempt a match to fill in and complete the other piece of data. If both fields are empty or if both fields are already filled with information, no change will occur.
Issue/Introduction
This article explains the effects of KB (Knowledge Base) on a unitary event in LogLogic SEM
Feedback
Yes
No
Powered by
