Send PTA syslog Records to SIEM

PTA can integrate with SIEM solutions to send detected incidents as syslog messages in CEF/LEEF format.

This section describes how to configure outbound integration of PTA with your SIEM solution. When PTA detects an event, it sends a syslog record to the server where your SIEM solution is installed in real time using CEF/LEEF format.

You can identify PTA records by their device vendor name, CyberArk, and their device product name, PTA.

 
TruePrivileged Access Security11.2