Recording untrusted agents

If an agent attempts to register but fails to provide the correct credentials, an event is logged. However, details about the client are NOT recorded into the database. This is the default Trust Protection Platform behavior. But you can configure Trust Protection Platform to record information submitted by agents that fail to successfully register.

Capturing information about failed attempts to register can be very useful in detecting potential intrusions. But this feature can also be used when performing initial testing of Agent Registration Settings configuration by helping you to identify which agents are failing to authenticate.

CAUTION  Be careful when enabling this feature. Although unlikely, it does open the door to Denial of Service (DoS) attacks where an attacker could attempt to fill the Trust Protection Platform database with superfluous information.

To record untrusted agents

  • Click Yes to enable the capturing of untrusted agents.

Related Topics Link IconRelated Topics