mf1d3l
13 lines
213 B
YAML
13 lines
213 B
YAML
title: Splunk Windows index and EventID field mapping
|
|
order: 20
|
|
backends:
|
|
- splunk
|
|
- splunkxml
|
|
- splunkdm
|
|
logsources:
|
|
windows:
|
|
product: windows
|
|
index: windows
|
|
fieldmappings:
|
|
EventID: EventCode
|