- KNOWLEDGE BASE
- DEVICE INTEGRATION
-
START YOUR TRIAL
-
DEVICE INTEGRATION
-
CONNECTORS
-
DATA INGESTION
-
HUNTING WITH WORKBOOKS
-
DNIF Query Language (DQL Language)
-
SECURITY MONITORING
-
OPERATIONS
-
MANAGE DASHBOARDS
-
MANAGE REPORTS
-
USER MANAGEMENT & ACCESS CONTROL
-
BILLING
-
MANAGING YOUR COMPONENTS
-
GETTING STARTED
-
INSTALLATION
-
SOLUTION DESIGN
-
AUTOMATION
-
TROUBLESHOOTING AND DEBUGGING
-
LICENSE MANAGEMENT
-
RELEASE NOTES
-
API
-
POLICIES
-
SECURITY BULLETINS
-
BEST PRACTICES
-
DNIF AI
-
DNIF LEGAL AND SECURITY COMPLIANCE
Dell Cylance Endpoint
Dell takes Endpoint Security to a New Level with Cylance® Advanced Threat Protection Technology. Cylance is the cyber security company that uses artificial intelligence to proactively prevent, rather than just reactively detect, advanced persistent threats and malware.
Integration of Dell Cylance Endpoint with DNIF
The following configurations should be done to forward Dell cylance endpoint logs to DNIF Adapter.
- From Cylance, navigate to Settings > Application.
- In the Integrations section, select Syslog/SIEM.
- Under Event Types, select all available events.
- For SIEM, select DNIF as the destination.
- For Protocol, select UDP.
- On IP/DOMAIN, type the** IP address** of the DNIF Adapter.
- Use 514 as the port number if using UDP.
- For Severity, select Debug.
- For Facility, select Internal.
- Click Save.
Dell Cylance endpoint logs are now streamed to DNIF.