After the content installation, additional steps may be necessary to fully implement a control, such as the following examples:
Populate a .csv file that is used by the mapping service for event enrichment.
Schedule automatic report execution in the Crystal Server.
Enable auditing on source devices.
Copyi an attached script for a Execute Command Correlation Action to the appropriate location on the correlation engine(s).
These steps should be added when the Solution Pack is created in Solution Designer.
To implement a control:
Open a Solution Pack in Solution Manager.
Select a Control.
Click the Implementation tab in the Documentation frame.
Follow all of the instructions in the Implementation tab.
Add notes to the Notes tab of the Documentation frame as necessary to document progress or necessary deviations from the recommended implementation steps.
When the implementation is complete, select the Control and change the status drop-down to Implemented.
An audit event is generated and sent to the Sentinel Control Center.
Because of potential legal and regulatory implications, the status for a Control should only be changed after all of the implementation steps have been successfully completed.
NOTE: A Control must be installed before it can be implemented.