Digital Developer Conference: a FREE half-day online conference focused on AI & Cloud – North America: Nov 2 – India: Nov 9 – Europe: Nov 14 – Asia Nov 23 Register now

Refine your search by using the following advanced search options.

Criteria	Usage
Questions with keyword1 or keyword2	keyword1 keyword2
Questions with a mandatory word, e.g. keyword2	keyword1 +keyword2
Questions excluding a word, e.g. keyword2	keyword1 -keyword2
Questions with keyword(s) and a specific tag	keyword1 [tag1]
Questions with keyword(s) and either of two or more specific tags	keyword1 [tag1] [tag2]
To search for all posts by a user or all posts with a specific tag, start typing and choose from the suggestion list. Do not use a plus or minus sign with a tag, e.g., +[tag1].

Ask a question

How to monitor specific set of user(s) in the UBA Dashboard

Question by Ramesh Shanmugam (1) | May 31, 2017 at 03:35 PM qradar_app uba

I have specific requirement to monitor for Privileged accounts and the list is not a static. How I can input a specific set of user's starting with say like, a-XXX, c-XXX. ( xxx = username ) and monitor only those user's activity in dashboard.
Alternately Do we have a method to bulk add user to watch-list.

Answer by Matthew Ouellette (IBM) (1075) | Jul 07, 2017 at 08:55 AM

Right now we don't but it is on the UBA roadmap. We are looking at adding the capability to:

Multiple watchlists
Ability to create watchlists from LDAP filters/groups
Ability to upload csv file/list to create watchlist

These are future items and out a few quarters likely, but is this in line with what you want to do?

0 Share

How to monitor specific set of user(s) in the UBA Dashboard

1 reply

Follow this question

How to monitor specific set of user(s) in the UBA Dashboard

1 reply

Follow this question

Related questions