https://live.paloaltonetworks.com/t5/strata-logging-service/prisma-access-logging-queries/m-p/583565#M34 <P>Hello All,</P> <P>I would like to know few things Prisma Access logging:</P> <P>1. From the documentation I can see that Prisma Access by default forward all logs to Cortex Data lake. We can forward syslog from cortex data lake to external syslog server in CSV, CEF &amp; LEEF formats. We can also use filters to rearrange fields, but I want to know what would be the default format if we don't use filters. The format I found in documentation was not matching and I have raised this with the vendor in the past, they have also agreed to correct documentation. I want to know if that is matching now.</P> <P>2. Is there way we can get JSON format logs for Prisma Access?</P> <P>3. Apart from syslog, is there any API from where we can pull JSON format logs?</P> <P>4. I am new to this product and working on Google Chronicle. I would like to know if Prisma Access is the CASB or Palo Alto has separate product for CASB?</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>Thank you for the help.</P> <P><LI-PRODUCT title="Prisma Access" id="Prisma_Access"></LI-PRODUCT>&nbsp;</P> Thu, 18 Apr 2024 18:43:43 GMT sushant1601 2024-04-18T18:43:43Z https://live.paloaltonetworks.com/t5/strata-logging-service/prisma-access-logging-queries/m-p/583565#M34 <P>Hello All,</P> <P>I would like to know few things Prisma Access logging:</P> <P>1. From the documentation I can see that Prisma Access by default forward all logs to Cortex Data lake. We can forward syslog from cortex data lake to external syslog server in CSV, CEF &amp; LEEF formats. We can also use filters to rearrange fields, but I want to know what would be the default format if we don't use filters. The format I found in documentation was not matching and I have raised this with the vendor in the past, they have also agreed to correct documentation. I want to know if that is matching now.</P> <P>2. Is there way we can get JSON format logs for Prisma Access?</P> <P>3. Apart from syslog, is there any API from where we can pull JSON format logs?</P> <P>4. I am new to this product and working on Google Chronicle. I would like to know if Prisma Access is the CASB or Palo Alto has separate product for CASB?</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>Thank you for the help.</P> <P><LI-PRODUCT title="Prisma Access" id="Prisma_Access"></LI-PRODUCT>&nbsp;</P> Thu, 18 Apr 2024 18:43:43 GMT https://live.paloaltonetworks.com/t5/strata-logging-service/prisma-access-logging-queries/m-p/583565#M34 sushant1601 2024-04-18T18:43:43Z