Log in

Sangfor Support Center

Table of Contents
< All Topics
Print

[NTA] There is a risk alert but there is no corresponding hot incident

Posted
Updated
Byadmin
Views1

Problem Description

hot incident and risks are not displayed in the NTA log: NTA has corresponding logs and generates relevant risk alerts, but there are no corresponding hot incident the threat analysis

Warning Very-Low Risk

Effective troubleshooting steps

Check the system time and confirm that the system time of the NTA device is inaccurate and later than the current time. After obtaining the accurate local time and saving it, incident is generated normally. The system time configuration path is as follows:

Root cause

The NTA system time is inaccurate, resulting in the filtering conditions not being met. The event is considered as an advanced event by NTA, so the corresponding hot incident is not generated.

solution

Get local time or synchronize time Server NTP server

Original Link

https://support.sangfor.com.cn/cases/list?product_id=24&type=1&category_id=9935&isOpen=true