Versions Compared

Version Old Version 2 New Version 3
Changes made by

serdar ak

serdar ak

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Expand
titleWhat is the format for classification log
Info

The result format is selected from the GEODI classification policy manager. DB, syslog, CEF pr CSV options are available.

Ypu may use a SIEM or Log Analysis Dashboard to monitor and analyse the logs.

GEODI Classifier Log Analysis Dashboard Panel and Log FormatsClassifier Project

Expand
titleHow will the agents deploy?
Info

  • You can use ManageEngine, PDQ, SCCM or a similar tool. GEODI Classification solution automatically generates the MSI and parameters required for agent deployment. Updating of agents is automatic, checked every 2 days.

  • If a there is few machine you can manually run the MSI.

  • Agents are monitored from a panel. GEODI Agent Management Panel

GEODI Classifier Windows Client Installation

...

Expand
titleHow can see ADS lebale?

ADS(Alternate Data Stream) is an NTFS feature. you You may use “dir /r" command to list them.

ADS labels are a feature of the NTFS filesystem and may not be preserved in some cases.

  1. Labels are preserved

    1. Rename the file

    2. Change file extension txt → log - mp4 → avi

    3. Copy the file to another NTFS filesystem with or w/o the GEODI classifier installed.

  2. Labels are not preserved

    1. The file is copied through RDP, Wetransfer, or similar ways.

    2. The file is copied to non-NTFS filesystem

    3. The file is carried in a compressed file (Rar/zip=

    4. The file is attached to an e-mail

Compatibility Issues

Expand
titleCan I use two classification solutions simultaneously?
Info

Yes, GEODI can adapt to the labeling scheme of an existing classification tool. This way, you can continue to use both simultaneously without additional work on the DLP side.

...