Sending Forensics Data to Third-Party Analytics Tool

You can send the forensics data to a third-party data analytics tool, such as Elastic that accepts the data in the JSON format.
  1. Navigate to Threat Prevention > Manage > Manage Data Tube.
  2. In the URL field. enter the URL of the third-party data analytics tool.
    Note:

    Endpoint Security does not support to enter user credentials for the third-party analytics tool for authentication.

  3. Click Save.

    The system applies the policy to all endpoints.

Endpoints send the forensic data in JSON format to the third-party data analytics tool.