Abstract
Cortex XDR provides you with different formats for its log notifications.
When Cortex XDR alerts and audit logs are forwarded to an external data source, notifications are sent according to the necessary format (syslog messages, email, or Slack notifications). If you prefer Cortex XDR to forward logs in legacy format, select the legacy option in your log forwarding configuration.