Skip to main content

SIEM

  • July 18, 2023
  • 2 replies
  • 508 views
xavy2310
Netskope Partner
Forum|alt.badge.img+5

to restart the netskope service so that it sends the events to the Qradar Siem, what would be the command or the options?

Rohit_Bhaskar
This topic has been closed for replies.

2 replies

matt-frank
Netskope Partner
Forum|alt.badge.img+14
  • matt-frank
  • Netskope Partner
  • July 19, 2023

The easiest way to get logs from Netskope into a SIEM is using Cloud Log Shipper within Cloud Exchange.  Configure the Netskope Plugin for Log Shipper - Netskope Knowledge Portal

Rohit_Bhaskar
0
S
Netskope Employee
Forum|alt.badge.img+16
  • sshiflett
  • Netskope Employee
  • July 19, 2023

@xavy2310 do you already have Cloud Log Shipper configured?  A restart of the service should not be required unless there's an issue.  Once you've configured the plugin and sharing (business rules) then logs should begin streaming to the QRadar instance. 

Sam Shiflett | Netskope Solution Architect - North America

Badges Winner

Show all badges

Not finding what you're looking for?

Don't be shy and let us know about your challenge.

Ask your question here!
Terms & ConditionsCookie settingsAccessibility statement