I am testing elastic Endpoint, I have installed it in a windows server machine, and when I try to install a malware in my machine it blocks it as expected so it works perfectly, The only problem is that I am not receiving anything in my SIEM.
I would like to uninstall it or stop it to install it again with a new
enroll but even as an admin I coudln't stop it.
Could you tell me please how can I do in this case ?
Thanks for your help