Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1012
Views
0
Helpful
0
Replies

eStreamer eNcore for Sentinel - ASA logs

ryan14
Level 1
Level 1

‎10-15-2021 10:47 AM

Does anyone know if it is possible to forward LINA/FTD messages to Azure Sentinel via the e-Streamer eNcore? I have successfully setup the service to forward my FMC connection events but I also want to forward messages from the traditional ASA platform which have FTD in the string.

 

I do have an FTD that is forwarding the syslog messages to my eNcore server (I can see them in /var/log/syslog). But I don't see them in Sentinel.

 

https://www.cisco.com/c/en/us/td/docs/security/firepower/670/api/eStreamer_enCore/eStreamereNcoreSentinelOperationsGuide_409.html

1 person had this problem
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card