I have log collection requirement for Windows servers in private cloud or DMZ, the only thing provided is log files in evtx format (Win event log file). I am wondering is there any way to integrate those event log files into RSA SA as “file” event resources?
1. Event log files extract from those servers with extension evtx by monthly
2. Event log files saves to share folder as zip file, and the share folder can be access through LAN network.Con O'Donnell