Epic SIEM
The JSA DSM for Epic SIEM can collect event logs from your Epic SIEM.
The following table identifies the specifications for the Epic SIEM DSM:
Specification |
Value |
---|---|
Manufacturer |
Epic |
DSM name |
Epic SIEM |
RPM file name |
DSM-EpicSIEMJSA_version-build_number.noarch.rpm |
Supported versions |
Epic 2014 |
Event format |
LEEF |
Recorded event types |
Audit Authentication |
Automatically discovered? |
Yes |
Includes identity? |
Yes |
Includes custom properties? |
No |
More information |
Epic website (http://www.epic.com/) |
To integrate Epic SIEM DSM with JSA, complete the following steps:
If automatic updates are not enabled, download and install the most recent version of the following RPMs from the Juniper Downloads onto your JSA console:
Epic SIEM DSM RPM
DSMCommon RPM
Configure your Epic SIEM device to send syslog events to JSA.
If JSA does not automatically detect the log source, add an Epic SIEM log source on the JSA Console. The following table describes the parameters that require specific values for Epic SIEM event collection:
Table 2: Epic SIEM Log Source Parameters Parameter
Value
Log Source type
Epic SIEM
Protocol Configuration
Syslog