Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Configuring Zscaler Private Access to Send Events to JSA

To send events to JSA, you must redirect the log stream for Zscaler Private Access. IBM supports user status, app connector status, and audit log types for Zscaler Private Access devices.

For more information about redirecting the log stream, see your Zscaler documentation about the Log Streaming Service.

  1. To use the User Status log type, see your Zscaler documentation About User Status Log Fields.

    When you configure a Syslog format, use the following LEEF output log format for User Status logs:

  2. To use the App Connector Status log type, see your Zscaler documentation About App Connector Status Log Fields.

    When you configure a Syslog format, use the following LEEF output log format for App Connector Status logs:

  3. To use the Audit log type, see your Zscaler documentation About Audit Log Fields.

    When you configure a Syslog format, use the following LEEF output log format for Audit logs: