[OOTB] Microsoft Products via KES WIN NG for KUMA 3.2
<html lang="en">
<body>
  
  <p>
	<b>Примечание</b>: для KUMA 4.0.1 и новее мы рекомендуем использовать пакет "[OOTB] Microsoft Products via KES WIN NG for KUMA 4.0.1" для получения событий Microsoft от KES WIN 12.11.<br>
	Нормализатор для некоторых типов событий аудита, генерируемых продуктами компании Microsoft и передаваемых c помощью KES WIN (версии 12.11) в формате JSON. Нормализатор поддерживает обработку некоторых типов событий в формате xml от следующих продуктов Microsoft:
	<ul>
		<li>Microsoft Windows - Security log</li>
		<li>Microsoft Windows - System log</li>
		<li>Microsoft Network Policy Server</li>
		<li>Microsoft - Windows - PowerShell - Operational</li>
		<li>Microsoft Windows PowerShell</li>
		<li>Microsoft Sysmon</li>
		<li>Microsoft Windows Remote Desktop Services</li>
		<li>Microsoft Defender</li>
		<li>Microsoft Active Directory Federation Service (AD FS)</li>
		<li>Microsoft Active Directory Domain Service</li>
		<li>Microsoft Hyper-V</li>
		<li>Microsoft SQL Server</li>
		<li>Microsoft Skype for business - Lync Server log</li>
		<li>Microsoft Windows - System log - Service Control Manager</li>
		<li>Microsoft - Windows - DNS-Server – Audit</li>
		<li>Microsoft – Windows - Group Policy - Operational</li>
	</ul>
  </p>

  <p>
	<b>Attention</b>: for KUMA 4.0.1 and newer it is recommended to use package "[OOTB] Microsoft Products via KES WIN NG for KUMA 4.0.1" to receive Microsoft events from KES WIN 12.11.<br>
	Normalizer for some event types that generated by Microsoft Products and transferred to KUMA by the KES WIN (version 12.11) in json format. The normalizer supports processing of some event types in the xml format for the following Microsoft products:
	<ul>
		<li>Microsoft Windows - Security log</li>
		<li>Microsoft Windows - System log</li>
		<li>Microsoft Network Policy Server</li>
		<li>Microsoft - Windows - PowerShell - Operational</li>
		<li>Microsoft Windows PowerShell</li>
		<li>Microsoft Sysmon</li>
		<li>Microsoft Windows Remote Desktop Services</li>
		<li>Microsoft Defender</li>
		<li>Microsoft Active Directory Federation Service (AD FS)</li>
		<li>Microsoft Active Directory Domain Service</li>
		<li>Microsoft Hyper-V</li>
		<li>Microsoft SQL Server</li>
		<li>Microsoft Skype for business - Lync Server log</li>
		<li>Microsoft Windows - System log - Service Control Manager</li>
		<li>Microsoft - Windows - DNS-Server – Audit</li>
		<li>Microsoft – Windows - Group Policy - Operational</li>
	</ul>
  </p>

</body>
</html>