Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

ON THIS PAGE

Add Log Streams
Manage Log Streams

Add and Manage Log Streams

Add Log Streams

Configure the type of log to be forwarded to an external SIEM system. You can also enable or disable the log stream.

Click Administration > Log Streams.
Click the plus icon ().
The Add Log Stream page is displayed.

Complete the configuration according to the following guidelines:

Table 1: Fields on the Add Log Stream Page
Field	Description
Log streaming	Enable streaming logs to an external SIEM system.
Name	Enter the name of the log streaming connection.
Log type	Select the log type to be forwarded to the external SIEM system. AuditLog Sessions SecurityEvents
Connection type	Select the SIEM system connection type. Azure Data Collector Azure Logic App Each connection type has its own unique configuration. Each configuration field value is obtained from Microsoft Azure and needed by Juniper Security Director Cloud to stream logs to Microsoft Azure.
Workspace ID	Enter the workspace ID associated with the Azure Log Collector.
Primary key	Enter the primary key associated with the Azure Log Collector.
URL	Enter the HTTP POST URL associated with the Azure Logic App for HTTP requests.
Enable log compression	Enable this option to compress the logs using GZip before streaming them to Azure. Log compression is supported only for the Azure Logic App connection type.

Click Test to verify the connection with the external SIEM system.
Click OK.

The log stream is displayed on the Log Streams page.

Manage Log Streams

Edit—Select a log stream, and then click the pencil icon ().
Delete—Select a log stream, and then click the trash can icon ().