siem.f

Hi, I need to configure a KSC to send logs to the Elastic SIEM (ELK). The logs must be in CEF format but the "Data Fomart" field cannot be modified. Why? Is it because Kaspersky is in the cloud? It's remain System Log Guide for KasperskySecurity Center (About exporting events using CEF and LEEF formats (kaspersky.it)) tell me how change data format, guide for Security Center Cloud Console (Configuring Kaspersky Security Center Cloud Console for export of events to a SIEM system) no. Why? Thanks.