Previous Topic: Modifying and Deleting ScansNext Topic: Add Dispatches for Your Actions

Setting up the ENS ComponentsUsing the DECwindows Interface to the Configuration EditorAdd Filters

Add Filters

See the chapter Understanding ENS for information about filters.

To add a filter

  1. Start the configuration editor as shown in Chapter 4, “Modifying the Configuration Database.”
  2. Pull down the Edit menu and choose the Edit Filter Create submenu This displays the Filter Name dialog box.
  3. Click the space provided for the name of the filter and enter a name. For example, security.
  4. Click OK. This displays the Filter dialog box as shown in the following figure.

  5. Complete the fields in the dialog box as follows using the table in the section, Filters, in Chapter 10, “Understanding ENS,” to help you.
    1. Enter a description of what the filter does in Information. For example, security events on the system managed by John Smith.
    2. Use the slider bar on Interval to choose the period within which all events after the first one that matches the filter definition are ignored. For example, (0). This means that this check will always pass and is the normal setting for this field.
    3. Use the slider bar on Event Interval to choose the period within which all events after the first one that matches the filter and event name are ignored. For example, (0). This means that this check will always pass and is the normal setting for this field.
    4. The default is to filter based on all event names, systems, subsystems, priorities and classes. But, if you wish to select individual event priorities to filter, deselect the appropriate All xxx where xxx equals event, system, subsystem, class or group and click the required
      xxx ... This displays a selection box applicable to the attribute you have chosen.

      For example, if you want to select a particular set of systems, deselect All Systems. This makes Systems ... active. Then click Systems ... A selection box is displayed which has two columns, Selected Systems and Available Systems. Click the system you wish to be filtered from the list of available systems on the right side of the dialog box. These system names will then be transferred into the column displaying the selected systems on the left side of the dialog box. When you have finished, click OK.

    5. If you wish to dispatch actions based on the criteria set in the previous steps, click Select ... in the Filter dialog box. This displays the Dispatch dialog box.
    6. Click OK in the Filter dialog box when you have completed the definition.