Core Threat Detection Module Deployment Guide
This guide is for LogRhythm administrators who are responsible for the security of their organization’s infrastructure and for anyone installing and configuring the SIEM.
This module adds to an existing LogRhythm deployment, as follows:
- 42 AI Engine Rules (15 Progression Rules)
- 8 Lists
- 2 Reports
The deployment of this module assumes the following:
- The overall LogRhythm deployment is in a fully-deployed and healthy state.
- LogRhythm version 7.1 or later is installed.
Overview of Steps
This guide is divided into the following sections:
Core Threat Detection Deployment Guide—Upgrade Considerations
Core Threat Detection Deployment Guide—Import and Synchronize the Module
Core Threat Detection Deployment Guide—Configure the Module