|
Original Question or Issue: |
I am able to "Send Test Message" and "Validate Mappings" successfully. However, I have no idea where the syslog test message is being sent.
|
|
Environment: |
|
| Steps to Reproduce: |
|
| Error or Log Message: | |
|
Defect or Enhancement Number: |
|
| Cause: | |
|
Resolution or Workaround: |
When you use Syslog as the SIEM Integration method, the messages are written directly to Syslog, which can be imported by the SIEM server. If you are running on a Windows machine, the logs are sent to the Event Viewer logs, see the sample screenshot below:
Logs added to the Syslogs (Event Viewer) can be imported into your SIEM server. Please check this with the team managing your SIEM server. |
| Notes: |