ITarian Help

Find the desired product help

SOCaaP

SOCaaP

Version 2.2

English

Print Help
SOCaaP SIEM > The Main Interface
  • Introduction
    • Logging-in To The SOCaaP Console
  • Dashboard Overview
    • Summary
    • Alerts, Incidents And Website Vulnerabilities
    • Customer Health
  • SOCaaP Alerts/Escalations
    • Log-in To The Admin Console
    • The Home Screen
    • Service Summary
    • Incidents Overview
      • Incidents
      • Threat Summary
    • Log Collection Summary
    • Threat Communication Graph
    • Tickets
    • Reports
    • Notification Settings
    • Integrate Your Office 365 Account With SOCaaP
  • SOCaaP SIEM
    • Log-in To The Admin Console
    • The Main Interface
    • The Dashboard
    • Customer Asset Management
      • Add Customers
      • Add Assets For Monitoring
        • Hard Assets
        • Soft Assets
      • Configure Nxlog And Rsyslog To Send Logs To SOCaaP Server
      • Edit Customers
    • Query Management
      • Configure Event Queries
      • Long Term Analysis
      • Configure Custom Dashboards
      • Event Field Selection Settings
    • Manage Rules
      • Manage Correlation Rules
      • Manage Tagged Rules
      • Manage Aggregation Rules
    • Incidents
      • Manage Incidents
      • Incident Category Management
      • Category Action Management
    • Lists
      • Manage Live Lists
      • Manage Live List Content
      • Manage Range List Content
      • Manage IP Range List Content
      • Manage Multiple Column List Content
    • Manage Reports
    • Administration
      • Event Collection
      • Phantom Settings
      • Manage Users
    • Appendix 1 – Field Groups And Event Items Description
    • Appendix 2 – SOCaaP Supported Logs
  • SOCaaP Web Protection
    • Add Websites
    • The Main Interface
    • The Dashboard
    • Website Data And Settings
      • Website Overview
      • Security Scans
        • Website Scans
        • Website Files Security Scans
          • Malware Scan Settings
            • Automatic Configuration
            • Manual Configuration
          • Run A Scan And View Results
          • Notifications, Malware Removal And Scheduled Scans
        • Vulnerability Scans
          • CMS Vulnerability Scans
          • OWASP Top 10 Vulnerability Scans
      • Content Delivery Network
        • Activate CDN For A Website
        • CDN Settings
        • View CDN Metrics
      • Firewall
        • WAF Statistics
        • WAF Events
        • Configure WAF Policies
        • Manage Custom Firewall Rules
      • SSL Configuration
      • DNS Configuration
      • Add Trust Seal To Your Websites
      • Back Up Your Website
        • Backup Settings
        • On-Demand Backup
        • View Backup Records And File Statistics
        • Restore And Download Website Files
        • Delete Backups
    • Manage Your Profile
  • Sensor Installation
    • Requirements
    • (Option 1) Create Installation Media
    • (Option 2) Deploy Virtual Machine Environment
      • Create A New Virtual Machine
      • Configure Memory Size
      • Configure Hard Disk
      • View VM Summary
      • Configure Network Settings
      • Select VM Startup Disk
    • Sensor Installation Steps
    • Sensor Configuration Steps
      • Login To The Web Portal
      • User Settings
      • Configure Network
      • Configure Timezone
      • Key Activation
      • (Optional) Valkyrie Key Verdict
      • (Optional) Forward Log
  • Frequently Asked Questions
  • About ITarian Security Solutions

The Main Interface 

 

The admin console is the nerve center of SOCaaP, allowing you to enroll networks/endpoints, create log collection policies and more. The dashboard contains at-a-glance statistics about your protected network.


  • The title bar shows your username, region, language and the number of alerts you have. The options icon on the right lets you change profile settings and password.

 

Title Bar Controls - Descriptions

The username of the currently logged-in admin

The name of the selected default customer. See 'c

The location, language and time zone settings as per the currently logged-in admin.


The number of incidents detected.


Click on the notification icon to open the incident management interface. The interface shows a list of incidents from all customers and lets you reassign them. See Incidents for more details.

Allows the currently logged-in administrator to edit their location, language and set default customer. See 'Change Region and Default Customer' for more details.

Navigational Menu button - Clicking this button allows administrators to navigate to the required main functional areas of the console: Dashboard, Assets, Investigation, Rules, Incidents, Live Lists, Reporting and Administration.


Main Functional Areas

  • Dashboard - A graphical summary of all events, top detected applications, attack sources, firewall event sources and more. See 'The Dashboard' for more details.
  • Assets - Add and manage networks for the customers, configure Nxlog and syslog servers and more. See 'Customer Asset Management' for more details.
  • Investigation - Create event queries and view the results in pie charts, bar charts and spider charts. See 'Query Management' for more details.
  • Rules - Create rules to analyze logs and provide alerts for certain conditions. See 'Manage Rules' for more details.
  • Incidents - Manage correlated and default incidents, assign/reassign incidents to users and more. See 'Incidents' for more details.
  • Lists - Create values that can be inserted into form fields when creating event queries and correlation rules. For a example, a list might be used to populate the suggestions in a drop-down menu. See Lists for more details.
  • Reporting -  Generate customer specific reports. Reports are available for different kinds of events such as login failures and successes, suspicious login attempts and more. See 'Manage Reports' for more details.
  • Administration - Download log collection utilities in order to deploy them on Windows and Linux servers. See 'Administration' for more details.

Change Region and Default Customer

  • Click the user setting button  and choose 'Region & Language' from the drop-down.




The 'Region and Language' dialog will appear.

  • Choose the region and time zone to be followed from the 'Region' drop-down.
  • Choose the language in which the SOCaaP web console is to be displayed from the 'Language' drop-down.
  • Click the 'Submit' button.

A confirmation message will displayed.


 

The settings will be changed and will take effect from your next login.


Customer Selection

  • After logging in, by default, the dashboard will show statistics for all customers.
  • You can configure SOCaaP to display statistics for a particular customer throughout the logged-in session. For example, if you navigate to different screens and return to dashboard, the statistics for the selected customer will be shown.
  • Note – This setting is valid only for the session.
  • Click the user setting button  and choose 'Customer Selection' from the drop-down.




The 'Customer Selection' dialog will appear.

  • Choose the customer the drop-down.
  • Click the 'Submit' button.

A confirmation message will displayed.



Supporttopic-1-1-1400002-57-the-dashboard.html

 


At the bottom of the interface, clicking the 'Help' and 'Tutorials', opens the respective support pages.

  • Help - Opens ITarian SOCaaP online help guide at https://help.ITarian.com
Tutorials - Opens the tutorials page that contains instructions and videos for some important tasks.
Comodo Help
  • IT Platform:
  • Help
  • Scripts
  • Wiki
  • Forum
  • Developer
  • RMM
  • Patch Management
  • Service Desk
  • ITSM
  • Managed Service Provider
  • Managed Detection and Response
  • Ticketing System
  • Helpdesk
  • ITIL

Copyright 2025 Itarian