We have been working with the show-logs API endpoint but suppressed logs are not accessible.
Do you mean that using the log exporter we can export all logs, even suppressed logs?
We integrated the logs with Splunk without luck, the suppressed logs are not being forwarded.
We have followed this integration document https://sc1.checkpoint.com/documents/App_for_Splunk/html_frameset.htm?topic=documents/App_for_Splunk...
Can the SIEM integration be changed to forward raw logs (also suppressed logs)?
Thanks!