Is there a way to pull group policy logs into the Nitro SIEM?
I tried adding them to a Microsoft Data Source w/ Windows Event Logs and adding Security, System, Application, Microsoft-Windows-GroupPolicy/Operational, but have had no success.
Has anyone implemented something similar to this?
Are you trying to pull logs from a Domain Controller? If so, you will need to edit Audit policy and tell the Domain Controller what you want to collect.