Logmanager documentation
Toggle Dark/Light/Auto mode Toggle Dark/Light/Auto mode Toggle Dark/Light/Auto mode Back to homepage
  1. Logmanager documentation
  2. /
  3. Log source devices configuration
  4. /
  5. Vectra Cognito

Vectra Cognito

Vectra Cognito NDR can be configured to send notification events via syslog to Logmanager.

To configure Vectra Cognito external logging:

  1. Go to Settings > Notifications > Syslog > Edit
  2. Input Logmanager IP address or hostname.
  3. Input Logmanager destination port.
  4. Select protocol TCP. You can also select UDP but it is not recommended. If you wish to use SSL encryption, select it and input 6514 destination port.
  5. Select format CEF. Other formats will not work.
  6. Select log types you wish to forward to Logmanager. Parser was tested for all available log types.
  7. Select additional conditions you are interested in. Parser was tested for all available conditions.
  8. Set Include enhanced details to ON.
    Vectra syslog settings

    Vectra syslog settings

Additional logging details can be found here: https://support.vectra.ai/s/article/KB-VS-1233