Abstract
In Cortex XDR, log forwarding includes different data types, which you can receive through different messaging formats.
To ensure you and your colleagues are informed and updated about events in your deployment, you can configure notification forwarding to Email, Slack, or a syslog receiver. The following table displays the data types supported by each notification receiver.
Data Type | Slack | Syslog | Cortex XSOAR | |
---|---|---|---|---|
Alerts | ||||
Agent Audit Log Cortex XDR Prevent or Cortex XDR Pro per Endpoint | — | — | ||
Management Audit Log | — | — | ||
Reports | — | — |