Do you guys have documentation to export the Hyper-V logs to IDR?
What logs are you looking for specifically? The agent will grab all of the security logs if it’s installed on your hyper-v server as it’s just running windows server. Additionally, you can have it connect over WMI and grab the windows logs.
https://docs.rapid7.com/insightidr/generic-windows-event-log
Or you can configure the agent to send additional logs assuming you know what logs you want to be sent.
1 Like