-
Notifications
You must be signed in to change notification settings - Fork 2.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
????????? #10455
Comments
Hi @vincentche1, Thanks for flagging this issue, we will investigate this issue and get back to you with some updates by 16-05-2024. Thanks! |
Dear @v-sudkharat, I hope you can expedite faster as the problem is impacted customer workflow. Please inform me if you need further details for investigation. |
@vincentche1, Sure, and Thanks for providing details. |
Hi @v-sudkharat, we hope that you can expedite this issue as it is pending for a remarkable time |
Hi @vincentche1, we were unable to address this issue because of our lack of availability. we'll investigate on it and give you an update by 25-05-2024. Thanks! |
Hi @vincentche1, Just want to check below few points with your end: -
Thanks! |
@vincentche1, Ok. Noted. Let us check and will update you. |
@vincentche1 from the log sample you sent. It seems like the log header is not compliant with CEF: Try removing "tmes[1]:" from the log header. Also, I think the log date format is also not compliant, but this should not stop the logs from being ingested but might be resulted in inconsistency between the actual log timestamp and CommonSecurityLog timestamp. |
In case you don't get even mock messages it's not a formatting issue. I suggest:
Please note the formatting issue remains IMO, so once you get the mock messages you will still need to fix it. |
Dear @MeirLevinMicrosoft @v-sudkharat , could you let me is there any update or any info you need to check more? |
Requesting for follow procedure. Thanks! |
No description provided.
The text was updated successfully, but these errors were encountered: