Exporting APM session information

Question

How can I export APM Session information details out to a syslog or SIEM server?&nbsp;

nicolas_destor · Answer

Hi Mike,You can export these data by using HSL protocol and with an iRule. For example to send the username of the user who completed the access policy, the iRule will be:when ACCESS_POLICY_COMPLETED {
    set username [ACCESS::session data get session.logon.last.username]
    set hsl [HSL::open -proto TCP -pool Pool_SPLUNK]
    HSL::send $hsl $username
}More examples are available here:https://support.f5.com/csp/article/K53013601

Forum Discussion

Exporting APM session information

1 Reply

Recent Discussions

iRule resulting in too many redirects

ASM cookie, modifying "domain" field

URL

service profile HTTP in LTM v16.1?

Azure SAML - F5 APM

Related Content

Session Table Export

Session Table Exporting With iRules

Insights of F5 Distributed Cloud WAAP Events Export, New Operators and Trends features

External Monitor Information and Templates

Problem about Export imformation to Excel