Operating system groups are used to map an operating system to specific process types and scripts in Security Incident Response workflows. The scripts define how running processes for the defined operating system groups are retrieved. New operating systems can be added as needed.

Before you begin

Role required: sn_sec_cmn.admin

Procedure

  1. Navigate to All > Security Operations > Utilities > Operating System Groups.
    The base system includes scripts for three operating systems:
    • BSD-based OS
    • POSIX-based OS
    • Windows OS
  2. Click New.
    Operating system groups
  3. Fill in the fields, as needed.
  4. Right-click in the form header and select Save.
    The Operating System Related Scripts related list opens.
    Operating System Related Scripts
  5. Click New.
  6. Select scripts that correspond with the workflows you are using to get running processes, services, and/or network statistics.
  7. Click Submit.