Hi ,
does anyone has any experience to ingest multiple sites linux or windows logs to chronicle SIEM
Linux/Windows logs ingestion from multiple sites to chronicle SIEM
+1
+4Hi Praveenjain45,
Yes, you can utilize Google Security Operations forwarders for Linux, Windows, and even docker!
Please find the docs below for reference:
https://cloud.google.com/chronicle/docs/install/forwarder-linux
https://cloud.google.com/chronicle/docs/install/forwarder-windows
https://cloud.google.com/chronicle/docs/install/docker-forwarder-windows
You're also able to manage your forwarders from the Google Security Operations UI:
https://cloud.google.com/chronicle/docs/install/forwarder-management-configurations
Hope this helps,
+1Hi Ben,
Thanks for the help, I have completed the ingestion through the forwarder method and it worked.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.