We were told to send a security Logs from MobileIron to Splunk log collector.
But we are unsure what to fill in the the severity type field.
We tried *.info but it didn't send security related information such as admin log on attempt.
Appreciate if you can advise the severity type. Thank you.