Technical specifications for Identity Cloud SIEM Integration are summarized as follows:
Filename pattern for event log files uploaded to SFTP server.
Specification |
Description |
---|---|
Protocol |
SFTP (Secure File Transfer Protocol). SFTP uses Secure Shell (SSH) to authenticate and establish secure network connections. |
Supported Formats |
Format of the data payload sent to client-provided endpoint. Allowed values are: Common Event Format (CEF) Version 0; and, Log Event Extended Format (LEEF) Version 2. |
Character Encoding |
UTF-8, a standard method for encoding Unicode characters. |
Minimum Log Upload Interval |
Minimum interval at which SIEM event log files are uploaded to an SFTP server. The default value is 1 minute. |
Maximum Log Upload Interval |
Maximum interval at which SIEM event log files are uploaded to an SFTP server. The default value is 1 day. |
Filename Format |
The filename pattern looks like this: |