https://community.cloudera.com/t5/Support-Questions/Configuring-Apache-Ranger-to-send-Syslog-to-a-SIEM-system/m-p/317112#M227015 <P><a href="https://community.cloudera.com/t5/user/viewprofilepage/user-id/42626">@ururu</a>&nbsp;I have a similar use case but the configurations mentioned above are not giving the desired results. Did you add or modify some of the configurations?</P><P>&nbsp;</P><P>E.g., I saw it being mentioned elsewhere that the hadoop.root.logger value needs to be changed as well to include SYSLOG as a value. Did you do this too?<BR /><BR /></P><P>Also, in case the external SIEM server expects a particular format, e.g., the RFC 5424 syslog format or a specific SIEM server format like Universal LEEF, what would be the best way to define this property?</P> Tue, 25 May 2021 14:05:02 GMT CaptainJa 2021-05-25T14:05:02Z