|
Splunk version 7.2 or later
|
|
Connections over port 443 must be allowed for the CylancePROTECT Application for Splunk to get threat data reports from Cylance Endpoint Security . To forward syslog events from Cylance Endpoint Security to your Splunk environment, you must configure network settings in the Cylance console and a log forwarder or firewall rule in your Splunk environment. For more information, see the Cylance syslog guide.
|