Kron PAM Configuration for Connection of ML-Based Threat Analytics and Response Engine

log in to the kron pam master instance’s cli with pamuser navigate to the ueba configuration folder $ cd /pam/docker mgmt/config repo/ open the uba default properties file with a text editor and set the parameters below after making changes, restart uba parameter description default value sc uba ignored log types ignored log types should be written comma separated and every log type should be in single quotes 'ocr', 'file download', 'file upload' sc uba command log process days before if the system does not have a property for the last process id (perhaps during the first run), this property is utilized to determine the maximum id of the command log "n" days prior 15 sc uba command log read job fixed rate ms log process job execution period 60000 sc uba command log read job init delay ms first job execution time after starting the application 0 ml log anomaly api server url ml based threat analytics and response engine’s ip and port address https //ml engine ip\ port