Another Day, Another Vendor

As we saw from Steve’s email, the new SIEM is Exabeam. Stream doesn’t have a specific Destination labeled Exabeam, because Exabeam is set up to simply accept syslog traffic. So we can create a syslog Destination and point it at the new deployment.

important

Add a destination

1. Make sure Manage is active in Stream's top nav – select the Data submenu and click Destinations
2. Click Syslog
3. Click Add Destination
4. Fill out the Destination details as follows:

• Output ID - exabeam
• Address - exabeam
• Port - 41489

5. Click Save

That was quick. And since we configured the Destination first, we can do something cool when we add the Source -- skip the Data Route. You read that right.

Let’s go set up the Source.