data.destination.siem > wizard
- Shirly Tsang
Analytics
The data.destination.siem > wizard command allows you to configure output settings for all the SIEM tools, such as IBM QRadar, Micro Focus ArcSight ESM, and McAfee ESM.
Syntax
data.destination.siem > wizard
Example
data.destination > siem
data.destination.siem > wizard
Do you want to configure data output McAfee settings y/n [y]:
y
Please use: '?' for help on available command options.
Please enter McAfee SIEM address[ 10.2.3.4 ]:
10.2.3.5
ok
Do you want to add more values? y/n [n]:
y
Please enter McAfee SIEM address[ 10.2.3.5 ]:
10.2.3.6
ok
Do you want to add more values? y/n [n]:
n
Please enter McAfee default port[ 6514 ]:
6515
ok
Please enter McAfee mode[ hold ]:
hold
ok
Address: 10.2.3.6
McAfee port is 6515
The output mode is hold
Is it correct? y/n [y]:
y
Do you want to configure data output ArcSight settings y/n [y]:
y
Please use: '?' for help on available command options.
Please enter ArcSight SIEM address[ 10.196.3.8 ]:
10.196.3.9
ok
Do you want to add more values? y/n [n]:
y
Please enter ArcSight SIEM address[ 10.196.3.9 ]:
10.196.3.10
ok
Do you want to add more values? y/n [n]:
n
Please enter ArcSight default port[ 6514 ]:
6515
ok
Please enter ArcSight mode[ hold ]:
hold
ok
Address: 10.196.3.10
ArcSight port is 6515
The output mode is hold
Is it correct? y/n [y]:
y
Do you want to configure data output QRadar settings y/n [y]:
y
Please use: '?' for help on available command options.
Please enter QRadar SIEM address[ 10.196.8.12 ]:
10.196.8.13
ok
Do you want to add more values? y/n [n]:
y
Please enter QRadar SIEM address[ 10.196.8.13 ]:
10.196.8.14
ok
Do you want to add more values? y/n [n]:
n
Please enter QRadar default port[ 65134 ]:
6514
ok
Please enter QRadar mode[ hold ]:
hold
ok
Address: 10.196.8.14
QRadar port is 6514
The output mode is hold
Is it correct? y/n [y]:
y
Setup wizard finished successfully