Request Tracker for Incident Response (RTIR)

Similar documents
RT and RT for Incident Response

RT and RT for Incident Response

RT for Incident Response (RTIR)

RTIR incident handling work-flow

Request Tracker 3.8. Stefan Hornburg. Nordic Perl Workshop Oslo, 17 th April 2009

IT Support Tracking with Request Tracker (RT)

Request For Proposal (RFP) Issued by FIRST.Org, Inc. ASSOCIATION MANAGEMENT SYSTEM. Submittal Deadline: December 18 th, 2015

UAB CIS QuickStart Guide Using the RT SelfService Web Interface Revision 1, 3/22/06

Shipbeat Magento Module. Installation and user guide

Vector HelpDesk - Administrator s Guide

Network Management & Monitoring Ticketing Systems with RT

Ticketing Systems with RT

Designing and Developing an Application for Incident Response Teams

Request Tracker 4 (RT4) Implementation Project Charter. Lisa Tomalty, ltomalty@uwaterloo.ca Information Systems and Technology

Ticketing Systems and Documentation

How To Create A Ticketing System With Rt.Org

ServiceDesk Plus On-Demand QUICK START GUIDE

Salesforce Customer Portal Implementation Guide

Glossary of Technical Terms Related to IPv6

vtiger Customer Portal 4.2 User Manual

ADSelfService Plus Client Software Installation Guide

HelpDesk Connect Operator Manual rev. 1.0.

What is FTH 2.0? replacement for

1.1 SERVICE DESCRIPTION

Self-Service Portal Implementation Guide

Getting Started Guide

Installation, Configuration and Administration Guide

Request Tracker User s Guide. : Describes the User Interface and usage of Request Tracker V3.

SapphireIMS Service Desk Feature Specification

Leveraging Best Practices for SolarWinds IP Address Manager

Magento module Documentation

OTRS: Issue Management System Meets Workflow of Security Team Pavel Kácha, 2007 CESNET, z. s. p. o.

Magic SDE Self-Service

Evaluator s Guide. PC-Duo Enterprise HelpDesk v5.0. Copyright 2006 Vector Networks Ltd and MetaQuest Software Inc. All rights reserved.

JobSuite Sample Workflow and Template

Creating an eportfolio Using Google Sites

Fixes for CrossTec ResQDesk

Scalable Web and Mobile Solution for Healthcare Software Provider

IT Service Desk Workflow Management in versasrs HelpDesk

Answers Implementation Guide

SapphireIMS 4.0 Service Desk Feature Specification

Support Request Ticketing System User Guide

DETAILED BOOT CAMP AGENDA

Minimizing ITSM cost of entry: HP Service Anywhere

Application Note 02 Advanced SMTP setup

vtiger Customer Portal 5.0 User Manual

ServiceU Training Guide

Creating a Website with Google Sites

IT Best Practices. Service Operations Recommendations

Version 1.7. Inbound Integration (POP3 and IMAP) Installation, Configuration and User Guide. Last updated October 2011

Integrating Autotask Service Desk Ticketing with the Cisco OnPlus Portal

LICENTIA. InvoiceXpress Integration

Administrator s Guide ALMComplete Support Ticket Manager

Installing and Sending with DocuSign for NetSuite v2.2

August 2014 Release Notes Version

How To Use The Numara Track-It! Help Desk And Asset Management Solution

SharePoint Designer Workflow Driven

Job Board Integration with eempact

Drop Shipping. Contents. Overview 2. Quick Tips 3. Basic Setup 4. Drop Ship Options 5. File Pickup Options 6. Messages 8

IT Service Desk Manual Ver Document Prepared By: IT Department. Page 1 of 12

Help Desk Structure Policy

FIREWALL CHECKLIST. Pre Audit Checklist. 2. Obtain the Internet Policy, Standards, and Procedures relevant to the firewall review.

Authorize.net for WordPress

Introduction to Google Docs

Ai.CRM. Extending SAP Consume-to-Cash Functionalities Product Overview

Contents AP - BROWSER BASED USER INTERFACE... 3 AP - CLIENT CAPABILITIES Cabinet AP October 2014 P a g e 2

The open source enterprise solution pre-configured for the IT Asset Management

Workflow Templates Library

Vodafone Total Managed Mobility

Table of Contents INTRODUCTION... 2 HOME PAGE Announcements... 7 Personalize & Change Password... 8 Reminders... 9 SERVICE CATALOG...

are done) Google Drive OR sign Pg.1

ManageEngine SupportCenter Plus 7.7 Edition Comparison

Helpdesk User Guidelines

MY HELPDESK - END-USER CONSOLE...

Host Hardening. Presented by. Douglas Couch & Nathan Heck Security Analysts for ITaP 1

use ready 2 The open source enterprise solution pre-configured for the IT Asset Management Tecnoteca Srl

AskCody Connect Connect your Outlook or AD to AskCody s solutions seamlessly. Everything included!

Siebel Open UI Service Planning and Execution

Trouble Ticket Express

Table of Contents INTRODUCTION...2 HOME PAGE...3. Announcements... 6 Personalize... 7 Reminders... 9 Recent Items SERVICE CATALOG...

When you first login to your reseller account you will see the following on your screen:

IT Quick Reference Guides Using the Online Ticketing System (mysupport)

Leads360 Small Business Admin Training Manual

SuiteCRM Customer Relationship Management System

Quick Reference Guide: Enhancements and New Features in Internet Solutions V3.0

TouchBase Pro. Users Guide

SOA Software API Gateway Appliance 7.1.x Administration Guide

Comparison Document. SupportCenter Plus Comparison Documents 1

How to work with the WordPress themes

Transcription:

Request Tracker for Incident Response (RTIR) Kevin Falcone Best Practical Solutions

RT/RTIR RT RTIR Extending RTIR Future development of RTIR

REQUEST TRACKER RT is a ticketing system Bugtracking Helpdesk Invoicing Incidents Sales Network Operations Abuse

REQUEST TRACKER It doesn't care what you're tracking A few key concepts that RTIR builds on

REQUEST TRACKER Queues Basic organizational unit for RT A ticket is in exactly one Queue Most common abstraction for access control

REQUEST TRACKER Custom Fields Custom data storage on Tickets or other RT objects Many render/storage formats New in RT 4 Date and Datetime IPv4 and IPv6 based on previous work for RTIR

REQUEST TRACKER Users Privileged Staff users (passwords, full access) Unprivileged May have SelfService view May just exist because of email

REQUEST TRACKER History Transactions Immutable history of changes to a ticket Attachments Email contents Email attachments Uploaded files

REQUEST TRACKER Workflows Scrips Conditions Actions Templates RTIR contains 30+ Scrips

REQUEST TRACKER Releases 4.0.5 Major series Minor series Release Smaller, more stable releases bugfixes only easier to stay up to date

REQUEST TRACKER Open Source https://github.com/bestpractical/rt 3.8-trunk 4.0-trunk master

RTIR RT Extension Four Special Queues IRT specific workflow Extraction and Searching of information Collecting related tickets

INCIDENT REPORTS Incident Reports Queue Manual Reports External Automated Systems Default CFs How Reported Reporter Type Customer

INCIDENTS Incidents Queue Collects 1, 100, more IRs into a single Incident Central point of ownership Central place to communicate Central collection of data

INCIDENTS Default CFs Description Function Classification Resolution

INVESTIGATIONS Investigations Queue External Communications Gathering further information Separate from IRs which would go back to the reporter of the problem. Default CFs Investigation

BLOCKS Blocks Queue Communication to network team Can be disabled if unused Default CFs Netmask Port Where Blocked

RTIR CUSTOM FIELDS Constituency Separate responsibility for handling IPs Automatic extraction of IP addresses from all ticket data Linking and Searching between

LOOKUPS Internal searching whois traceroute ping external webservices internal webservices

LOOKUP Set( @RTIRResearchTools, (qw(traceroute Whois Iframe))); Set($RTIRIframeResearchToolConfig, { 1 => { FriendlyName => 'Google', URL => 'https://encrypted.google.com/search? q= SearchTerm ' },... Set($whois, { 1 => { Host => "whois.iana.org", FriendlyName => "IANA", },...

LOOKUP Add your own iframe link Create a local/rtir/tool/elements/ ToolFormSite local/rtir/tool/elements/ ToolResultsSite Add to RTIRResearchTools Hide things you don't use (traceroute?)

RTIR CUSTOMIZATIONS External Custom Fields RT-Extension-ACNS Custom Lookup from earlier

EXTERNAL CUSTOM FIELDS Source the values of a drop down from external web service external db information pulled from RT Documentation and sample included with RT since 3.8.0

RT-EXTENSION-ACNS Parses pre 1.0 ACNS emails Maps contents into custom fields Available on CPAN and GitHub

RTIR'S DEVELOPMENT Janet-CSIRT v1 TC-CSIRT RTIR-WG v2 2.4 and 2.6 2.6 removed many restrictions on the Custom Fields used in RTIR

RTIR'S DEVELOPMENT 3.0 (compat with RT 4.0) Removed State => Lifecycles Removed custom SLA RT::Extension::SLA is much richer All other 4.0 improvements Bring searching closer to core Replace/Rework Net::Whois::RIPE

RTIR DEVELOPMENT 4.0 Improvements User interface overhaul Ticket lifecycles Mobile web interface Online theme editor GMail style history folding RTFM integrated as Articles

RTIR DEVELOPMENT Full-text search AJAX completion of email addresses Better HTML mail support New rights management UI Hundreds of performance improvements and bugfixes More tests

RTIR DEVELOPMENT RTIR 3.0 rtir-devel@lists.bestpractical.com http://issues.bestpractical.com/ log in as guest ticket #18710 https://github.com/bestpractical/rtir I'm a software vendor, don't trust my ship dates.

RTIR DEVELOPMENT RTIR 3.2 will block the release of RT 4.2 Custom Field groups in 4.2 Removes more RTIR complexity S/MIME support on par with GPG Improved Scrips UI Improved General Statistics RTIR Search Refactoring Assets extension Possible Constituencies Enhancements

RTIR SUPPORT rtir-devel@lists.bestpractical.com rt-users@lists.bestpractical.com #rt irc.perl.org Professional support and customization

RTIR WORKING GROUP MEETING Wednesday afternoon Seats may still be available? Driving the future features of RTIR What workflows don't we know about

Questions

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information