Support

Support for business applications

Kaspersky Security Center Cloud Console

Exporting events to SIEM systems

Marking of events for export to SIEM systems in Syslog format

Kaspersky Security Center Cloud Console
Knowledge Base Online Help
FAQ Free trial Forum Contact support Recovery tools

Marking of events for export to SIEM systems in Syslog format

December 9, 2024

ID 218223

Get as PDF

After enabling automatic export of events, you must select which events will be exported to the external SIEM system.

You can configure export of events in the Syslog format to an external system based on one of the following conditions:

  • Marking general events. If you mark events to export in a policy, in the settings of an event, or in the Administration Server settings, the SIEM system will receive the marked events that occurred in all applications managed by the specific policy. If exported events were selected in the policy, you will not be able to redefine them for an individual application managed by this policy.
  • Marking events for a managed application. If you mark events to export for a managed application installed on a managed device, the SIEM system will receive only the events that occurred in this application.

In this section

Marking events of a Kaspersky application for export in the Syslog format

Marking general events for export in Syslog format

See also:

Scenario: Configuring event export to SIEM systems
');
Kaspersky Endpoint Security for Business Advanced: Adaptive security of your company
Web and device controls. Data encryption. Centralized and convenient management from a single console.
');
Kaspersky Premium Support (MSA): High‑priority incident processing
Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).