Open backloop-biz opened 2 years ago
+1 The audit log is an important trace to be retained more than 90 days. It would be very useful getting it exported also. Thankyou.
+1
Getting the audit logs into the SIEM is crucial as we can track user activity that could be potentially dangerous, such as making changes to the threat protection policies, making changes to system settings and so on.
Hello, is it possible to include also audit information? For example the login (succeded or failed) of users on Sophos Central?