CloudWatch / AWS Managed AD
33 views
Skip to first unread message
Rafael Chereda
Mar 25, 2024, 6:15:17 AM3/25/24
to Wazuh | Mailing List
Hi Team!
I managed to integrate CloudWatch/AWS Managed AD with Wazuh and I'm able to receive some logs correctly. However, the data.aws.source field is appearing without information. Where should I configure this information to appear? I tested through the Decoder and the Rule, but so far without success.
I managed to integrate CloudWatch/AWS Managed AD with Wazuh and I'm able to receive some logs correctly. However, the data.aws.source field is appearing without information. Where should I configure this information to appear? I tested through the Decoder and the Rule, but so far without success.
Rafael Chereda
Mar 25, 2024, 6:15:32 AM3/25/24
to Wazuh | Mailing List
Ujunwa Okonkwo
Mar 25, 2024, 7:11:07 AM3/25/24
to Wazuh | Mailing List
Hello Rafael,
Thank you for reaching out to us.
Please provide the configured integration.
Looking at the image in this blog post https://wazuh.com/blog/monitoring-aws-managed-microsoft-active-directory/ it seems the data.source field is not populated too.
Regards,
Looking at the image in this blog post https://wazuh.com/blog/monitoring-aws-managed-microsoft-active-directory/ it seems the data.source field is not populated too.
Regards,
Reply all
Reply to author
Forward
0 new messages