Support

Support for business applications

Kaspersky Security Center Cloud Console

Exporting events to SIEM systems

Scenario: Configuring event export to SIEM systems

Kaspersky Security Center Cloud Console
Knowledge Base Online Help
FAQ Free trial Forum Contact support Recovery tools

Scenario: Configuring event export to SIEM systems

December 9, 2024

ID 151328

Get as PDF

This section provides a scenario for configuring the export of events from Administration Server to external SIEM systems. Exporting information about events to external SIEM systems enables administrators of SIEM systems to respond promptly to security system events that occur on a managed device or groups of devices.

Prerequisites

Before you start configuring the export of events in the Kaspersky Security Center Cloud Console:

You can perform the steps of this scenario in any order.

Stages

The process of the export of events to a SIEM system consists of the following stages:

Results

After configuring the export of events to a SIEM system, you can view the export results if you selected events that you want to export.

See also:

Before you begin

About events in Kaspersky Security Center Cloud Console

About event export

Configuring an event export in a SIEM system

Marking of events for export to SIEM systems in Syslog format

About exporting events using Syslog format

Configuring Kaspersky Security Center Cloud Console for export of events to a SIEM system

Viewing export results
');
Kaspersky Endpoint Security for Business Advanced: Adaptive security of your company
Web and device controls. Data encryption. Centralized and convenient management from a single console.
');
Kaspersky Premium Support (MSA): High‑priority incident processing
Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).