Artificial Intelligence Queries

LogLogic LMI includes artificial intelligence and machine learning capabilities to classify information from unknown log sources. This is achieved by using the TensorFlow trained model to automatically classify logs of access or audit types. By using an additional classifier in the advanced search query, you can view the additional information in the search results.

You can use the training model classification in advanced search queries, correlation, aggregation rules, and Bloks.

Before using the training model, ensure that Advanced Features are enabled on the appliance. To ensure that the training model is set up on the appliance, contact your LogLogic LMI administrator.

Example - Advanced Search

To search logs of a particular log source using the TensorFlow training model, use the following advanced search query:

Use system | options useClassifier='ll_tax_v1'

For more information about the classifier options and the result columns, see OPTIONS Statement.