In my environment, we have two servers which are running on MS Windows Server 2012 R2 Core without GUI, so only I can type the commands to do any configuration on them.
So now my concern here is that how I can integarte those two servers in RSA Security Analytics under Windows Legacy. As on this machine one HyperV is running and I want to capture the logs of that.
What are the configuration steps which I need to perform on the server to get this done?
Can I capture the logs via Syslog method or is there any agent which needs to be installed or need to run any commands in Power Shell mode to get this done.
Pls add your suggestions and ideas on this, as this is very critical to fix in RSA SA as per the audit finding.