• Forums
    • Public Forums
      • Community Connect
      • Dynatrace SaaS & Managed
        • Dynatrace SaaS & Managed Open Q&A
      • Application Monitoring & UEM
        • AppMon & UEM Free Trial
        • AppMon & UEM Open Q&A
        • AppMon & UEM Plugins
      • Data Center RUM
        • DC RUM Open Q&A
        • Enterprise Synthetic Monitoring
      • Dynatrace Synthetic Monitoring
        • Dynatrace Synthetic Open Q&A
        • Dynatrace Synthetic EAP Feedback
      • Keynote Synthetic Monitoring
        • Keynote Synthetic Open Q&A
        • Keynote Synthetic EAP Feedback
      • BSM Open Q&A
      • Server Monitoring Open Q&A
      • Dynatrace Open Q&A en Español
  • Home /
  • Public Forums /
  • Data Center RUM /
  • DC RUM Open Q&A /
avatar image
Question by Sharyl K. · Sep 10, 2014 at 06:44 PM ·

DCRUM Intrusion detection alert

Having a need to create "Instrusion Detection" alert for example:

X number for sessions from same user in x amount of time

Or

x executions of a url by same user in x time.

Can I have suggestion how to set up to accomplish the purpose?

Thank you,

 

Sharyl

 

Comment

People who like this

0 Show 0
10 |2000 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users

1 Reply

· Add your reply
  • Sort: 
  • Most voted
  • Newest
  • Oldest
avatar image

Answer by Erik S. · Sep 10, 2014 at 06:50 PM

DCRUM is not intended as an Intrusion Detection tool; it is a performance monitoring tool.

 

That said, an alert based on username and URL, with operation count greater than X as the alert threshold, is likely as close as you will get in DCRUM.  this will throw an alert anytime the operation count in an interval for a specific user exceeds the specified threshold.

 

-- Erik

Comment
Erik S.

People who like this

1 Show 1 · Share
10 |2000 characters needed characters left characters exceeded
▼
  • Viewable by all users
  • Viewable by moderators
  • Viewable by moderators and the original poster
  • Advanced visibility
Viewable by all users
avatar image Sharyl K. · Sep 10, 2014 at 08:59 PM 0
Share

Can I do alert on browser session?

Your answer

Hint: You can notify a user about this post by typing @username

Up to 5 attachments (including images) can be used with a maximum of 52.4 MB each and 262.1 MB total.

Welcome the
Dynatrace Community Forums

Check out the Forum User Guide and Forum Guidelines to learn how to get started.

Community Member of the Month
August 2017

Announcing Dynatrace's Community Member of the Month for August 2017, Rick B.! Click here to read more!

Follow this Question

Answers Answers and Comments

2 People are following this question.

avatar image avatar image

Forum Tags

known issue universal decode rum console mobileapp data delay oracle data retention metrics dmi all other operations sites url learning smtp monitoring sequence transactions virtualization dc rum sso splunk task scheduling citrix http operation amd reporting trace good to know sniffing point diagnostics url aging installation currency licensing sending reports gomez 12.4 xml ssl decryption community corba failover http express tcam snc voip community awards span ports dna reports buc data export high speed amd transaction tds user aggregation best practices hardware ads configuration security high five award rest api operational attributes netflow css web soap appflow data processing 17.0 sap esm amd restarts cba redhat autodiscovery rcon dcrum data validation integration bmc web performance monitoring rtmgate sql smb migration 12.3 mq snmp oracle applications rtmjob capacity jolt iiop user recognition url monitoring regex ahs cas exchange performance byte 12.4.10 tips and tricks dashboard cluster bulk insert hierarchy cas benchmark tool baselines data access 12.2 parameters traps mssql oracle forms scalability software services rhel7 documentation alerting dc rum extensions administration
  • Forums
  • Public Forums
    • Community Connect
    • Dynatrace SaaS & Managed
      • Dynatrace SaaS & Managed Open Q&A
    • Application Monitoring & UEM
      • AppMon & UEM Free Trial
      • AppMon & UEM Open Q&A
      • AppMon & UEM Plugins
    • Data Center RUM
      • DC RUM Open Q&A
      • Enterprise Synthetic Monitoring
    • Dynatrace Synthetic Monitoring
      • Dynatrace Synthetic Open Q&A
      • Dynatrace Synthetic EAP Feedback
    • Keynote Synthetic Monitoring
      • Keynote Synthetic Open Q&A
      • Keynote Synthetic EAP Feedback
    • BSM Open Q&A
    • Server Monitoring Open Q&A
    • Dynatrace Open Q&A en Español