Hello,
What is the best and effective way to integrate the SIEM solution (Splunk) with One IM. Feed the logs or Splunk connecting the One IM DB ?
Anyone have done this before, what are the logs need to inject / any use case. Please advice.
Thanks,
AA…