If the Symantec management server and Elastic Agent are running on different.Enable this integration with the UDP input.If a specific SEP log type is detected then event.provider is set (e.g. The data is mapped toĮCS fields where applicable and the remaining fields are written under Headers are allowed and will be parsed if present. The log message is expected to be in CSV format. To receive logs sent by SEP over syslog or read logs exported to a text file. This integration is for Symantec Endpoint Protection (SEP) logs. Quick start: Get application traces into the Elastic Stack.Quick start: Get logs, metrics, and uptime data into the Elastic Stack.
See the integrations quick start guides to get started:
0 kommentar(er)
