Supported Products April 2011

The ArcSight library of out of the box SmartConnectors provides source-optimized collection for 300+ commercial products. These products span the entire stack of event-generating source types, from network and security devices to databases and enterprise applications.

In addition to SmartConnectors developed and maintained by ArcSight, the Common Event Format (CEF) partner program enables other technology vendors to deliver and certify interoperability with ArcSight products by logging in accordance with open CEF format. Several technology partners have already achieved CEF certification, as noted.

Anti-Virus/Anti-Spam Data Leak Prevention F-Secure Anti Virus Fidelis XPS – (CEF) McAfee VirusScan Enterprise Symantec DLP (Vontu) Sophos Sybari Antigen for Microsoft Exchange Data Security Symantec Antivirus Corporate Edition Cyber-Ark Inter-Business Vault – (CEF) Symantec Mail Security for MS Exchange Cyber-Ark Sensitive Document Vault – (CEF) TrendMicro OfficeScan (Control Manager, Ingrian TM Control Manager DB) Vormetric Data Security Manager TrendMicro VirusWall (Control Manager)

Applications Firewall FW-1 BEA Weblogic Server Cisco PIX Firewall IBM WebSphere CyberGuard Firewall SAP ERP (Altor Networks ) - (CEF)

Juniper Network Security Manager (NetScreen) Application Security Juniper Networks Firewall and VPN Arxan – (CEF) Lucent Managed Firewall Bit9 – (CEF) McAfee Desktop Firewall Secure Computing Gauntlet Firewall/VPN Stonesoft Stonegate Clinical / Healthcare Applications Symantec Enterprise Firewall Symantec Gateway Security FairWarning – (CEF)

Content Security Honeypot HoneyD Aladdin eSafe Gateway

Barracuda (NetContinuum Web Firewall) McAfee Email and WebSecurity Appliance (CEF) IDS/IPS – Host Based McAfee Web Gateway Cisco Security Agent (Okena) Puresight Content Filter ISS Black Ice Server Protection (SiteProtector) Secure Computing Webwasher McAfee Host IPS (Entercept) TrendMicro Control Manager NFR Security HID TrendMicro InterScan Messaging Security SANA Primary Response (Control Manager) Symantec Critical System Protection TrendMicro InterScan Web Security (Control Manager) Symantec ITA (Intruder Alert) Tripwire Manager & Tripwire Enterprise DAM/DB Security Application Security DBProtect (CEF) IDS/IPS – Network Based Guardium – (CEF) Broadweb Netkeeper Imperva SecureSphere – (CEF) Bro IDS Oracle (Secerno DataWall)– (CEF) Cisco IPS Sensor Sentrigo HedgeHog (Enterprise, vPatch) – (CEF) Cisco Secure IDS CounterSnipe Database Enterasys Dragon HP-TippingPoint UnityOne SMS IBM DB2 Intrusion SecureNet Pro Microsoft SQL ISS RealSecure Server Sensor Oracle ISS RealSecure WorkGroup Manager Oracle Audit Vault ISS Proventia IPS Appliance (SiteProtector) Sybase Adaptive Server Enterprise Juniper Networks IDP (NetScreen)

McAfee Network Security Manager (IntruShield)

NFR Central Management Server Mail Server NFR Security NID IBM Lotus Notes Domino Enterprise Server NitroSecurity IPS Microsoft Exchange PacketAlarm IDS Microsoft Forefront for Exchange Server Radware DefensePro Sendmail Snort Sourcefire Intrusion Sensor Sourcefire Defense Center Management Console Malware Detection Sourcefire RNA Sensor (Real-time Network Awareness) Damballa – (CEF) Symantec ManHunt FireEye (CEF) Symantec Network Security 7100 Truimfant (CEF) Toplayer Attack Mitigator

IDM, IAM & Identity Security Midrange Systems ActivCard AAA Server DB IBM AS/400 CA eTrust SiteMinder (Netegrity) Cisco Secure Access Control Server (ACS) Network Access Control Cyber-Ark PIM Suite – (CEF) ForeScout – (CEF) FOXt (CEF) Mirage Networks Counterpoint IBM Tivoli Access Manager

Juniper SBR (Steel Belted Radius) Lieberman Software – (CEF) Network Behavior Anomaly

Microsoft Active Directory Arbor Networks Peakflow Microsoft Forefront Lancope StealthWatch Microsoft Network Policy Server (Windows IAS/RADIUS) Mazu Profiler Novell Nsure Audit Oracle NetPoint (Oblix) Network Discovery Oracle SunONE Directory Server Lumet IPsonar PacketMotion PacketSentry – (CEF)

RSA Authentication Manager (ACE Server) RSA Access Manager (ClearTrust) Network Forensics Secure Computing SafeWord PremierAccess Narus – (CEF) Niksun NetDetector Integrated Security NetWitness – (CEF)

Barracuda Networks Spam Firewall Cisco ASA 5500 Network Management Fortinet FortiGate Cisco Works iPolicy Intrusion Prevention Firewall F5 BigIP Palo Alto Networks - (CEF) Secure Computing Sidewinder Network Monitoring SonicWALL ISC DHCP

ISC BIND IT Operations Microsoft Operations Manager DB (MOM) HP Operations Manager (OM) Microsoft System Center Operations Manager DB (SCOM) HP Openview Operations (OVO) Microsoft DHCP Microsoft DNS Log Consolidation & Analysis Microsoft WINS Nagios Cisco MARS

Quest InTrust (fka Aelita Event Manger (AEM) Enterprise IT Security SF-RiskSaver – (CEF) Network Traffic Analysis Cisco NetFlow / Flexible Netflow Mail Filtering NetScout – (CEF) QoSient Argus Cisco Ironport Email Security Appliance TCP Dump McAfee Email Gateway (Secure Computing IronMail)

McAfee Security for Email Servers (GroupShield) Symantec Mail Security 8200 Series Network Traffic Management MessageGate Cisco Distributed Director 4500 Bro IDS Mainframe CA Top Secret Operating Systems Enterprise IT Security SF-Sherlock – (CEF) IBM AIX Operating System Enterprise IT Security SF-NoEvasion – (CEF) HP OpenVMS IBM OS/390 (NVAS) HPUX Operating System IBM OS/390 (SDSF) Microsoft Windows 7/NT/2000/2003/XP/2008 Server/Vista Type80 SMA_RT for RACF Redhat Linux Type80 SMA_RT for CA Top Secret Snare for Microsoft Windows Solaris BSM UNIX

- Page 2 -

Sabernet NT Syslog Citrix Access Gateway Juniper/NetScreen (Neoteris) SSL VPN Physical Systems/Security Nortel Contivity Extranet Switch Plasec – (CEF) Vulnerability Assessment Policy Management eEye REM Security Management Console McAfee Policy Auditor eEye Retina Network Security Scanner NetIQ Security Manager Harris STAT Scanner Securify SecurVantage ISS Internet Scanner Solsoft Policy Server McAfee Vulnerability Manager (Foundscan) nCircle IP360 Device Profiler nCircle IP360 Threat Monitor Router Nmap Cisco Router OVAL Juniper Router (JUNOS) Qualys Guard Rapid 7 NeXpose Security Management Symantec NetRecon Tenable Nessus Enterasys Dragon Server Visionael Security Audit Intrusion Securenet Provider Saint Vulnerability Scanner ISS Site Protector

McAfee ePO McAfee Rogue System Detection (via ePO) Web Cache MicroSoft Audit Collection System BlueCoat Proxy SG Series Symantec ESM Microsoft ISA Symantec SESA Network Appliance NetCache Squid Storage NetApp FAS Web Filtering EMC Celerra Cisco Ironport Web Security Appliance Websense Web Security Suite Switch Cisco Catalyst Web Server Cisco CSS 11500 Series Content Services Switches Apache Foundry Networks Big Iron Microsoft IIS HP Ethernet Switch Sun ONE

Virtualization Wireless VMWare ESX/ESXi Server AirDefense Guard VMWare Virtual Center AirMagnet Enterprise AirPatrol Wireless Locator System (WLS) – (CEF) VPN Aruba Mobility Controller Cisco AIRONET 1200 Alcatel Secure VPN Gateway Cisco Mobility Services Engine Check Point VPN-1 Newbury Networks Wi-fi Watchdog Cisco VPN Concentrator

Note: Most ArcSight SmartConnectors can be deployed as software and are also supported on ArcSight Connector Appliances.

About ArcSight: ArcSight, an HP company, is a leading global provider of cybersecurity and compliance solutions that protect organizations from enterprise threats and risks. Based on the market-leading SIEM offering, the ArcSight Enterprise Threat and Risk Management (ETRM) platform enables businesses and government agencies to proactively safeguard digital assets, comply with corporate and regulatory policy and control the internal and external risks associated with cybertheft, cyberfraud, cyberwarfare and cyberespionage. For more information, visit www.arcsight.com.

ArcSight, an HP Company. 5 Results Way, Cupertino, CA 95014, USA - www.arcsight.com - [email protected] - Corporate Headquarters: 1-888-415-ARST © 2010 ArcSight, Inc. All rights reserved. ArcSight and the ArcSight logo are trademarks of ArcSight, Inc. All other product and company names may be trademarks or registered trademarks of their respective owners.

- Page 3 -