Logs from Azure are encrypted on Qradar

Question

Hello everyonewe are integrating CATO to send events to an azure and from there our SIEM service will collect the logs using Qradar.The workflow is:Cato &gt; container &gt; logic app &gt; event hub.we are getting logs on Qradar but they seem to be encrypted.when we download the logs from the container to a local PC they are readable.this is my first attempt with azure integration so i have no idea where too start..&nbsp;Thanks

peter · Answer

Hello Joe,If those log files have been pushed using our Event Log feature, they will be gzipped.

joe · Answer

Hello PeterI used "Event Integrations"&nbsp;How can i solve this issue?

joe · Answer

Hello PeterI used "Event Integrations"&nbsp;&nbsp;&nbsp;How can i solve this issue?

Forum Discussion

Logs from Azure are encrypted on Qradar

Related Content

All members of group is not syncing from Azure AD

eventsFeed.py - Enough?

NAT Settings

Re: unable to block windows update

Re: Event logs limited to 100 events only

Recent Discussions

Website Access Control on CATO

Email alert when a domain is no longer accessible

Auto disabling of "Secured Private Access" when user in office

bypass application

NAT Settings