.png?width=180&height=32&name=NW%20Logo%20(2).png){kind=small}
This procedure describes how to deploy Event Source Log Parsers from Live in NetWitness 11.x
- Go to CONFIGURE > Live Content.
-
Browse Live for the Event Source Log Parsers that you need using Log Device as the Resource Type.
The Event Source Log Parsers available for adding and updating display.
-
Select the Event Source Log Parsers you want to deploy.
You have the following two options when deploying Event Source Log parsers:
-
Individually. You can select one or more Event Source Log Parsers to deploy. For example:
- Or as a bundle. Choose Bundle from the Resource Types, click Search, then select the Log Parser Pack that contains all Event Source Log Parsers that Security Analytics currently supports.
-
- Deploy the Event Source Log Parsers to the appropriate Log Decoders.
You are here
Table of Contents > Deploy Log Parsers in NetWitness 11.x