To request new parsers for unparsed logs, create a ticket in the Alert Logic Support Center.
It is important to include one or more links to unparsed messages on the Alert Logic console. If you do not, Alert Logic Support will not be able to create your parser.
Note: We cannot accept product documents in place of links.
You should also include any preferences for parsing that you have (e.g. important fields, preferred formats, irrelevant fields, etc). A Support agent may contact you to clarify these details or request further information.
This process normally takes 10-15 business days to complete, but varies depending on request complexity. Once the log parsing is complete, you will receive an email confirming that the requested logs are now being parsed.
Note: Alert Logic focuses on logs from known third-party software, servers, and services. We do not support parsers for custom software, although we do have generic parsers for common standard formats (eg. CSV, CEF).
Comments
0 comments
Please sign in to leave a comment.