Submitting forms on the support site are temporary unavailable for schedule maintenance. If you need immediate assistance please contact technical support. We apologize for the inconvenience.
Trying to setup forwarding of logs in a dedicated Repository to SIEM solution
Description
Can a collection in Deployment Manager be configured to forward logs gathered by a traditional gathering task/job and kept in a dedicated Repository? Repository Viewer confirms that the dedicated Repository has the logs but cannot get these logs to be forwarded to a SIEM solution.
Cause
Forwarding function does not work with traditional gathering, only with real-time gathering, so only real-time collections will be forwarded to a SIEM solution.
Resolution
Workaround:
Configure the gathering and forwarding process using a Real-Time Collection and a dedicated Repository in Deployment Manager.
Your Request will be reviewed by our technical reviewer team and, if approved, will be added as a Topic in our Knowledgebase.
Recommended Content
Product(s):
InTrust
11.6, 11.5.1, 11.5, 11.4.2
Topic(s):
How To
Article History:
Created on: 2/10/2015 Last Update on: 2/22/2024
Thank you for your feedback for Topic Request
Your Request will be reviewed by our technical reviewer team and, if approved, will be added as a Topic in our Knowledgebase.
Welcome to Quest Support
You can find online support help for Quest *product* on an affiliate support site. Click continue to be directed to the correct support content and assistance for *product*.
The Quest Software Portal no longer supports IE8, 9, & 10 and it is recommended to upgrade your browser to the latest version of Internet Explorer or Chrome.