Write grok for 1 Aug 14 13:30:36 date time

I need to write a proper date time log parser for "1 Aug 14 13:30:36". I found this log from PAM solution and forwarded to the logstash through CEF format.

How ever I have tried several grok patterns to extract, but no luck.

Need help to write proper date time grok or log parser pattern for above mentioned PAM log output of event date & time

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.