In IBM’s effort to continue to streamline and simplify navigation for our customers, this Ideas portal will be shut down on February 28, 2023. We would ask that you use the main IBM Ideas portal at https://ideas.ibm.com/ or the IBM Security-specific portal at https://ibmsecurity.ideas.ibm.com/ to review, vote for existing ideas, or add new ideas.
Now the variables that can be used are a few ones that cannot give the costumer all the information they want for the alerts.
Also %%QueryFromDate and %%QueryToDate does not show the timestamp, which will help even more.
They want to be able to configure on the template the alert query related in order to send them to SIEM in the specific structure (CEF, LEEF...) for now, alert details (the query) cannot be modified on the template.
By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.
Hello - thank you for your submission. We intend to consider this request in the future. We will keep you posted on our decision and findings.
Regards,
Product Management Team
IBM Data Security / Guardium
Hi team,
Is there any update for this idea?
Thamk you,
Regards,
Jorge