SIEM Configuration

You can configure syslog event forwarding to send events from Cygna Auditor for Active Directory to external SIEM servers. Multiple SIEM receivers can be added to have the same event sent to multiple servers.

1. In the Management Console, expand Configuration and click General Settings.

2. Click Add in the SIEM Settings section.

3. Provide a connection name, destination server, and port.

4. Click Test to send a test message to the 3rd party and click Save once the test is complete.