Log Forwarding Data Types - Administrator Guide - Cortex XDR - Cortex - Security Operations

Cortex XDR Prevent Administrator Guide

Product
Cortex XDR
License
Prevent
Creation date
2024-07-16
Last date published
2024-10-10
Category
Administrator Guide
Retire_Doc
Retiring
Link_to_new_Doc
/r/Cortex-XDR/Cortex-XDR-Documentation
Abstract

In Cortex XDR, log forwarding includes different data types, which you can receive through different messaging formats.

To ensure you and your colleagues are informed and updated about events in your deployment, you can configure notification forwarding to Email, Slack, or a syslog receiver. The following table displays the data types supported by each notification receiver.

Data Type

Email

Slack

Syslog

Cortex XSOAR

Alerts

check-mark.png
check-mark.png
check-mark.png
check-mark.png

Agent Audit Log

Cortex XDR Prevent or Cortex XDR Pro per Endpoint

check-mark.png

check-mark.png

Management Audit Log

check-mark.png

check-mark.png

Reports

check-mark.png
check-mark.png