HI, What is the process to integrate LogRhythm alerts to RSA Netwitness.Pease share any related docuemnts if we have.
What format do the alerts come in?
Do you have sample alerts that you can share?
Through SNMP we are planning to get Logrhythm alerts.
You will have to test out what those SNMP alerts look like and use the Log COllector to capture them and transform them into NetWitness events. Any reason why syslog output cannot be used (CEF)?
Retrieving data ...