In a Security Information and Event Management (SIEM) integration it is recommended to use the Fully Qualified Domain Name (FQDN) when specifying the
SIEM server address(es).
In a Security Information and Event Management (SIEM) integration it is recommended to use the Fully Qualified Domain Name (FQDN) when specifying the
SIEM server address(es).
In a Security Information and Event Management (SIEM) integration, using a Fully Qualified Domain Name (FQDN) for specifying the SIEM server addresses can introduce potential security risks and complications such as DNS spoofing. Therefore, it is recommended to use IP addresses instead for more stable and secure communication. Using FQDN is generally not recommended unless there is a specific operational justification and proper security measures are in place.
https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/DV-Integrating-with-SIEM-Applications.htm
Use DNS only if you have a business or operational justification. Make sure that you follow the Vault security standards. For more information, see Avoid using DNS on the Digital Vault Server.
A is correct answer.
It is POSSIBLE but NOT RECCOMENDED ! : https://docs.cyberark.com/pam-self-hosted/Latest/en/Content/PASIMP/DV-Integrating-with-SIEM-Applications.htm#Prerequisites