Time delay for messages in Sentinel

Question

We have set up the connector to MDATP.Messages that are displayed there take a long time until the info is displayed in Sentinel.How do we get the information displayed in Sentinel in real time?Such a long delay is not very nice from a security point of view.&nbsp;

jan_f1801 · Answer

Kann denn wirklich niemand sagen warum die Anzeige so sehr verzögert im Sentinel ankommt?

mclaes · Answer

Jan_F1801&nbsp;I share your concern. If the delays are too large, we're better off using email alerts straight from the log source (WDATP, MCAS, ASC ...).&nbsp;Don't know if 'the silent majority' feels this is a problem too or if we are the only two 🙂

thijs lecomte · Answer

I have the same delay... Unfortunately this is nothing you can do

Forum Discussion

Time delay for messages in Sentinel

3 Replies

Resources