Log in

Sangfor Support Center

Table of Contents
< All Topics
Print

[ES] Using the security administrator account to handle threat prompts no permission

Posted
Updated
Byadmin
Views1

Problem Description

The ES security administrator account is used to respond to threats in the response center, but it prompts that there is no permission.

Alarm Information

Effective Troubleshooting Steps

  1. Confirm whether the threat being addressed is a zombie network or an advanced threat.
  2. Confirm whether there are corresponding error messages for handling other threats besides handling these two types of threats.
  3. Confirm if the version of ES is lower than 3.5.20.

Root Cause

The security administrator of ES is unable to deal with botnets and advanced threats, which is a mechanism problem.

3.5.20 optimized the ability to deal with zombie networks, but advanced threats have not been optimized yet.

Solution

Mechanism problem, explain to the customer.

Scope of Operation Impact

None

Original Link

https://support.sangfor.com.cn/cases/list?product_id=16&amp;type=1&amp;category_id=2706&amp;isOpen=true