Tahmeed702 Posted December 11 Posted December 11 I wanna export logs to my IBM Qradar SIEM solution in LEEF format , how to configure in KSC to connect with SIEM and how to configure connection in SIEM to integrate with KSC , can anyone explain in details. I am beginner in SIEM and KSC
Diego Moraes Posted December 12 Posted December 12 Hello, Documentation for export is here. https://support.kaspersky.com/KSC/14.2/en-US/151328.htm Here is a step by step explanation of how to do this.
Tahmeed702 Posted Monday at 05:00 AM Author Posted Monday at 05:00 AM On 12/12/2024 at 6:11 PM, Diego Moraes said: Hello, Documentation for export is here. https://support.kaspersky.com/KSC/14.2/en-US/151328.htm Here is a step by step explanation of how to do this. This Only explains the connection settings in KSC , but how can i set specific port number in IBM so that KSC can send logs to IBM Qradar . I have deployed IBM Qradar In my VM.
Tahmeed702 Posted 12 hours ago Author Posted 12 hours ago I tried to connect IBM Qradar Via syslog but got following errors.
Recommended Posts
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now