We are trying to collect all log data centrally. How can I export the EPO threat events and user audit data to syslog?
I know i can register an executable with the server, but it seems limited using it only with automatic responses.
Hi gdavid, would i be interesting for you sending SNMP traps from ePO to your syslog? If so you just need to configure a new SNMP server inside ePO config and set automated responses to send SNMP traps depending on which events you are interested on.