20.3 Configuring Solution Packs

Sentinel ships with a wide variety of useful out-of-the-box content that you can use immediately to meet many of your analysis needs. Much of this content comes from the pre-installed Sentinel Core Solution Pack and Solution Pack for ISO 27000 Series. For more information, see Using Solution Packs in the Sentinel Administration Guide.

Solution Packs allow categorization and grouping of content into controls or policy sets that are treated as a unit. The controls in the Solution Packs are pre-installed to provide you with this out-of-the-box content, but you have to formally implement or test those controls by using the Sentinel Main interface.

If a certain amount of rigor is desired to help show that your Sentinel implementation is working as designed, you may use the formal attestation process built into the Solution Packs. This attestation process implements and tests the Solution Pack controls just as you would implement and test controls from any other Solution Pack. As part of this process, the implementer and tester will attest that they have completed their work; these attestations will then become part of an audit trail that can be examined to demonstrate that any particular control was properly deployed.

You can do the attestation process by using the Solution Manager. For more information on implementing and testing the controls, see Installing and Managing Solution Packs in the Sentinel Administration Guide.