Table of Contents:
This topic describes the steps to configure syslog on the KnowBe4 PhishER.
Prerequisites
- Administrator login credentials.
Configuring Knowbe4 Phisher syslogs
1. Login to your KnowBe4 PhishER Platform.
2. Navigate to Settings > Syslog.
3. Click the New Syslog button in the top-right corner of the page.
4. In the Add Syslog Settings pop-up window that opens, configure your Syslog server settings.
5. Configure the below fields.
- Name: Unique Name
- Protocol: TCP or UDP
- Host: Forwarder IP Address
- Port: 21667
- Format: Select the appropriate standard JSON or CEF or LEEF
6. Click Create.
Once the configuration is completed, we need to validate the logs in chronicle using a regular expression such as (".*") This expression, or a specific hostname, will provide the log source types that are being ingested into the chronicle. Below is a screen shot for reference.
Comments
0 comments
Please sign in to leave a comment.