I've deployed a SIEM VM (Enterprise Security Manager, Event Receiver & Log Manager VM8 9.5).
Then I added one data source, Fortigate firewall, and i can see all the events correctly.
now i'd like to export the raw log for this day, how can I do?
I've tried this procedure find on the community (in attached) but doesn't work, always gave me: wrong password.
Is there another way without add an extern storage?
thanks so much
Upgrade to v9.5.1 MR1 and above and you can use local VM storage as your ELM storage. Once added you can use this as your storage pool and starts dumping raw logs to that storage.