I need a solution
Hello Folk's
I have installed the Symantec Data Loss Prevention (DLP) and I configured input. We are receiving logs but unfortunately the fields are not being extracted. We are using the sourcetype of symantec:dlp:syslog.
Before I extract the fields manually, I wanted to check if anyone else experienced this and found a solution in Splunk Tool too.
Please help me out this!
Thanks!
0