|
|
Forum Newbie
      
Group: Forum Members
Last Login: 6/8/2015 1:44:36 PM
Posts: 2,
Visits: 0
|
|
Is there a way to add additional 'admin supplied' data (such as a unique character string) to each security record? I want to capture this unique string with my SIEM tool
Thanks!
|
|
|
|
Supreme Being
      
Group: Moderators
Last Login: 11/14/2013 3:17:47 PM
Posts: 237,
Visits: 0
|
|
What type of security records are you interested in?
|
|
|
|
Forum Newbie
      
Group: Forum Members
Last Login: 6/8/2015 1:44:36 PM
Posts: 2,
Visits: 0
|
|
I am trying to audit authentication/authorization/access information that is normally captured in the security logs.
I have an admin defined string that I want to append to each record.
Any help you can provide would be appreciated.
Steve
|
|
|
|
Supreme Being
      
Group: Moderators
Last Login: 11/14/2013 3:17:47 PM
Posts: 237,
Visits: 0
|
|
I don't believe that you can modify the security logs in any way. You would have to look at something else to modify the syslog messages as they are transmitted or received by the SIEM.
|
|
|
|