SIEM integration supports automatic system response, improved data monitoring and analysis, and enhanced security capabilities.
Step 1.
Click the system Management page, and then select the SIEM Integration menu.
Step 2.
Click on the Edit button and enter the SIEM integration information.
Please note that after configuration, the system-SIEM integration may require 2-3 minutes for completion.
Field Names |
Explanation |
Log format |
Please select the log format for transmission.
|
Time format |
Please select the time format for transmission.
|
Host / IP |
Please provide the transmission connection address, for example:
|
Protocol |
Please select the transmission protocol, for example:
|
Port |
Please select the transmission port, for example:
|
|
The default value is "disabled." The secure connection setting should be enabled if the SIEM integration domain uses HTTPS access. |
When editing the status, you can click the "Test Connection" button to test the connection at that moment, and the system will not record the test result. (Testing the connection of Host/IP, protocol, port, and SSL fields)
|
Troubleshooting
Error Message |
Explanation |
The connection information is incorrect. |
When clicking the "Test Connection" button, the Host/IP, Protocol, Port, or SSL fields are incorrect.
Please ensure that the connection information is accurate and error-free. |