My client has asked me the following questions:
"Can you tell me what to log exactly and need to forward to splunk?
In other words, which level of log is needed to meet the PCI requirement?
On most systems and appliances it is possible to set a specific log level. In normal situations there is chosen for a low log level because Disk and CPU usage.
For the following:
windows server en workstation
Can you specify what the minimum is?"
Please can anyone suggest how to and which log files needs to be configured in Splunk for above mentioned Platforms?
... View more