Splunk Dev
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to Receive Kaspersky Security Center Logs via Syslog with TLS?

refahiati
Explorer
‎03-22-2025 03:07 AM

Hi everyone,

I am trying to configure Kaspersky Security Center to forward logs to Splunk using Syslog over TLS. However, I need some guidance on the following points:

 

  • How can I configure Kaspersky Security Center to send logs via Syslog over TLS?

  • What are the steps to generate the necessary certificates for this setup?

  • Which certificate formats or file extensions does Kaspersky Security Center accept for TLS encryption?

  • Are there any specific configurations required on the Splunk side to properly receive and parse these logs over TLS?

I would appreciate any insights, best practices, or documentation references that could help.

Thank you in advance!

 

Labels (1)
Labels
0 Karma
Reply

PickleRick
SplunkTrust
SplunkTrust
‎03-22-2025 01:08 PM

Most of those questions are not about Splunk but about the other end - the Kaspersky solution. You should consult their support/community/docs.

The only question related to Splunk is the last one and the general answer is - don't do it directly on Splunk component. Use an external syslog daemon - syslog-ng, rsyslog, SC4S and either send to HEC input on Splunk or write to files and read those files with UF.

Reply
Get Updates on the Splunk Community!

Data Management Digest – November 2025

  Welcome to the inaugural edition of Data Management Digest! As your trusted partner in data innovation, the ...

Splunk Mobile: Your Brand-New Home Screen

Meet Your New Mobile Hub  Hello Splunk Community!  Staying connected to your data—no matter where you are—is ...

Introducing Value Insights (Beta): Understand the Business Impact your organization ...

Real progress on your strategic priorities starts with knowing the business outcomes your teams are delivering ...