Splunk Enterprise Security

Error after update - Threat Intel

acadea
Explorer

Hello,

After updating  SES to version 6.4.0, the menu Configure > Data Enrichment > Threat intelligence Management shows an empty content page with an error  "Not found"

/app/SplunkEnterpriseSecuritySuite/ess_threat_intelligence_management

I have also checked this article, without success.

https://docs.splunk.com/Documentation/ES/6.5.1/Admin/Managethreatintelligenceuponupgrade#Recover_the...

Have you encountered this, any ideas ?

Thanks,

acadea_0-1622814447925.png

Labels (1)
0 Karma
1 Solution

lakshman239
Influencer

@acadea - We upgraded to 6.4.1 and I noticed the change in the 'release notes' - threat performance improvements - https://docs.splunk.com/Documentation/ES/6.4.0/RN/Enhancements .  The ES Configuration health check will also complain about this. So, if you can remove the deprecated links/navigations, or restore the default navigation with 6.4.0 and add your custom changes to the ES navigation. This should fix your navigation errors.

Hope this helps.

View solution in original post

0 Karma

acadea
Explorer

hello,

indeed, the old stanzas were not compatible anymore. after upgrading from 6.4.0 to 6.4.1 the issue has been fixed.

thanks

0 Karma

lakshman239
Influencer

@acadea - We upgraded to 6.4.1 and I noticed the change in the 'release notes' - threat performance improvements - https://docs.splunk.com/Documentation/ES/6.4.0/RN/Enhancements .  The ES Configuration health check will also complain about this. So, if you can remove the deprecated links/navigations, or restore the default navigation with 6.4.0 and add your custom changes to the ES navigation. This should fix your navigation errors.

Hope this helps.

0 Karma
Get Updates on the Splunk Community!

Earn a $35 Gift Card for Answering our Splunk Admins & App Developer Survey

Survey for Splunk Admins and App Developers is open now! | Earn a $35 gift card!      Hello there,  Splunk ...

Continuing Innovation & New Integrations Unlock Full Stack Observability For Your ...

You’ve probably heard the latest about AppDynamics joining the Splunk Observability portfolio, deepening our ...

Monitoring Amazon Elastic Kubernetes Service (EKS)

As we’ve seen, integrating Kubernetes environments with Splunk Observability Cloud is a quick and easy way to ...