Exporting data to a third-party SIEM tool
Use the
page to format reporting data for use by a third-party SIEM tool. Select data columns and apply filters to the data, just as you do in other areas of the Report Center (see Using the Transaction Viewer for Web, see Using Message Details for Email).Before data can be exported, you need to configure SIEM Storage details. Navigate to to select a storage type and configure your own storage if you do not wish to use Forcepoint storage (the default). See Configuring SIEM storage for details.
After selecting the type of data that you want to export to your SIEM tool, define the data format, and enable SIEM data export.
To configure and enable SIEM integration: