Comodo Help
Find the desired product help
Xcitium NxSIEM

Xcitium NxSIEM

Admin Guide 1.4

English

Print Help Download Help
Customer Asset Management > Adding Assets For Monitoring > Hard Assets
  • Introduction To Comodo NxSIEM
    • Logging-in To The Administrative Console
  • The Main Interface
  • The Dashboard
  • Customer Asset Management
    • Adding Customers
    • Adding Assets For Monitoring
      • Hard Assets
      • Soft Assets
    • Downloading And Installing The NxSIEM Agent On Endpoints
    • Configuring Nxlog And Rsyslog Servers To Send Logs To NxSIEM Server
    • Editing Customers
  • Log Collection Agents And Policies
    • Collection Agents
      • Downloading NxSIEM Windows And Linux Agents
      • Managing Agents
      • Agentless Log Collection
    • Log Collection Policies
      • Audit Events Policy
      • Flat File Policy
      • Remote Log Collection Policy
      • Syslog Policy
      • Configuring Log Collection Policies
  • Query Management
    • Configuring Event Queries
    • Configuring Custom Dashboards
  • Managing Rules
  • Incidents And Cases
    • Managing Incidents
    • Managing Cases
  • Live Lists
    • Managing Live Lists
    • Managing Live List Content
  • Managing Reports
  • Administration
    • Viewing Log Collection Summaries
    • Managing Users
    • Viewing License And Subscription Details And Configuring NxSIEM Platform URL
  • Appendix 1 – Field Groups And Event Items Description
  • Appendix 2 - Configuring Endpoints To Forward Logs To NxSIEM Server
  • About Comodo Security Solutions

Hard Assets


The 'Hard Assets' interface allows administrators to add and manage networks for the enrolled customers. NxSIEM allows the administrator to add several networks for each customer by specifying their start and end addresses. Each network can be divided as zones depending on the organizational requirements.


For each network or the zone defined for a customer:

  • A unique activation key is generated. The activation key is used to activate the log collection agent installed on Windows and Linux endpoints in the network/zone, for connection to the NxSIEM server and to send logs from them. Refer to the section Downloading and Installing NxSIEM Agent on Endpoints for more details.
  • A unique authentication token is generated. The authentication token can be used as 'AGENTLESS_AUTH_TOKEN' parameter on the configuration script that can be run on Linux endpoints with RSYSLOG utility, for agent less log collection from them. Refer to the section Agentless Log Collection for more details.
  • Configuration files for RSYSLOG and NXLOG utilities are generated. The configuration files can be directly run on endpoints with RSYSLOG and NXLOG utilities respectively without any re-configuration, for them to send logs to NXSIEM server. Refer to the section Configuring Nxlog and Rsyslog servers to send logs to NxSIEM server for more details.

To open the Hard Assets interface for a customer

  • Open the 'Asset Management' interface by clicking the 'Menu' button, then 'Assets' > 'Asset Management'.
  • Select the customer whose assets are to be added, from the left hand side pane.

The Customer Details pane will open in the right.

  • Click 'Manage' at the bottom left of the right pane and choose the 'Hard Assets' tab.



The list of networks/zones added for the selected customer is displayed in the right hand side pane with action buttons. The network token and the activation key for the selected network are displayed in the lower right pane.


Hard Assets: Action – Controls

Clicking this icon displays the authentication token, agent activation key and download buttons for the pre-configured RSYSLOG and NXLOG configuration script files for the network/zone in the lower right pane.

Allows you to reset the authentication token for the network/zone and generate new one. Once the token is changed, the old token becomes invalid. The NxSIEM server will not be able to collect logs from RSYSLOG utility at endpoints with configuration script file containing the old token.

Allows you to edit the name and IP address range of the network or the zone.

Allows you to delete the network or zone. Deleting a network also deletes the zones configured under it.

Allows you to add a zone to the network.


The Hard Assets interface allows you to:

  • Add a new Networks and Zones
  • Edit a network or zone
  • Delete a network or zone
  • Get the authentication token and activation key for a network or zone

To add hard assets for a customer

  • Select the customer from the left in the 'Asset Management' interface and click the 'Mange' button on the right pane.
  • Click the 'Hard Assets' tab
  • Click the 'Network' button at the bottom of the right pane.





The 'Add Network' dialog will appear.

  • Name - Enter the name of the network in the field.
  • Start IP - Enter the start IP address if a range of endpoints are to be added. If a single endpoint is to be added, enter its IP address in both the 'Start IP' and 'End IP' fields.
  • End IP: Enter the end IP address if a range of endpoints are to be added. If a single endpoint is to be added, enter its IP address in both the 'Start IP' and 'End IP' fields.
  • Click the 'Add' button.

The network will be added and a unique authentication token and agent activation key will be generated for the network. Clicking the button in the new network row will display the token and the key at the bottom of the right pane.





  • Repeat the process to add more networks.

To add a zone to a network

  • Click the button in the row of the network.



The 'Add Zone' dialog will appear.

  • Name: Enter the name of the zone in the field.
  • Start IP: Enter the start IP address if a range of endpoints are to be added for the zone. If a single endpoint is to be added, enter its IP address in both the 'Start IP' and 'End IP' fields.
  • End IP: Enter the end IP address if a range of endpoints are to be added for the zone. If a single endpoint is to be added, enter its IP address in both the 'Start IP' and 'End IP' fields.
  • Click the 'Add' button.

The Zone will be added to the network and a unique authentication token and agent activation key will be generated for the zone. Clicking the button in the row of the new zone will display the token and the key at the bottom of the right pane.


To edit a network or a zone

  • Click the button in the row of the network or the zone.

The 'Edit' dialog will appear. The dialog is similar to Add Network or Add Zone dialog.





  • Edit the details as required and click the 'Add' button.

To delete a network or Zone

  • Click the button in the row of the network or the zone.

A confirmation dialog will appear.





  • Click 'Yes' to remove the network or the zone. Please note that if a network is removed, the zones under it will also be removed.

To get the authentication token, activation key and the configuration script files for a network or a zone

  • Click the button in the row of the network or zone.

The authentication token and the agent activation key for the item will be displayed at the bottom of the screen.




  • Authentication token - The authentication token can be used as 'AGENTLESS_AUTH_TOKEN' parameter on the configuration script that can be run on Linux endpoints with RSYSLOG utility, for agent less log collection from them. Refer to the section Agentless Log Collection for more details.
  • Activation key - The activation key is used to activate the log collection agent installed on Windows and Linux endpoints in the network/zone, for connection to the NxSIEM server and to send logs from them. Refer to the section Downloading and Installing NxSIEM Agent on Endpoints for more details.
  • Configuration Script Download Buttons - The configuration files can be directly run on endpoints with RSYSLOG and NXLOG utilities respectively without any re-configuration, for them to send logs to NXSIEM server. Refer to the section Configuring Nxlog and Rsyslog servers to send logs to NxSIEM server for more details.
Our Products
  • Free Antivirus
  • Free Internet Security
  • Website Malware Removal
  • Free Anti-Malware
  • Anti-Spam (Free Trial)
  • Windows Antivirus
  • Antivirus for Windows 7
  • Antivirus for Windows 8
  • Antivirus for Windows 10
  • Antivirus for MAC
  • Antivirus for Linux
  • Free Endpoint Security
  • Free ModSecurity
  • Free RMM
  • Free Website Malware Scanner
  • Free Device Manager for Android
  • Free Demo
  • Network Security
  • Endpoint Protection
  • Antivirus for Android
  • Comodo Antivirus
  • Wordpress Security
Cheap CDN
  • Bootstrap CDN
  • Semantic UI CDN
  • Jquery CDN
  • CDN Plans
  • CDN
  • Free CDN
Enterprise
  • Patch Management Software
  • Patch Manager
  • Service Desk
  • Website Down
  • Endpoint Protection Solutions
  • Website Security Check
  • Remote Monitoring and Management
  • Website Security
  • Device Manager
  • ITSM
  • CRM
  • MSP
  • Android Device Manager
  • MDR Services
  • Managed IT Support Services
  • Free EDR
Free SSL Certificate
Support Partners Terms and Conditions Privacy Policy

© Comodo Group, Inc. 2025. All rights reserved.