Install Guide
Logger Setup
Refer to this document to add a logger.
Here are the required fields for the logger setup:
- Storage: Select the node that will receive the logs transmitted by Shell GUARD via the Syslog protocol (either the forwarding node or the data node).
- Logger Model:
Shell GUARD - Table:
WSH_SHELLGUARD - Remote IP: The IP address of the Syslog client, typically the IP address of the Shell GUARD server.
The default dashboards and datasets installed reference a table named WSH_SHELLGUARD.
Note
To store logs encrypted, first add the `WSH_SHELLGUARD` table in Settings > Tables before configuring the logger.