Syslog
Event Log
Log Management – Real time log data collection, analysis, reporting & archiving
Log data is a critical source of key information for troubleshooting issues and supporting broader business objectives. MonitorIT’s Log Management solution makes log data useful for daily security reporting, daily operations analysis, and compliance auditing. Event Log, Syslog, application logs, and machine data can be viewed, analyzed, alerted upon, reported, and archived in real time from MonitorIT’s single dashboard and delivered to your IT staff.
Monitor IT’s Log Management Features:
- Centrally report across all of your logs and security data in seconds
- Build template based compliance reports to diagnose issues and troubleshoot security incidents quickly.
- Narrow your security exposure and reduce risk by investigating threats, analyzing logs, and any other security relevant data across your entire IT infrastructure from one place.
- Reduce operational complexity and cost by performing log management using the same Intelligent Agents used for monitoring
- Provide log data search capability for troubleshooting problems and investigating security incidents to the entire IT staff including, administrators, security analysts, and auditors. Role based security enables users to manage log data from the network to the application layer.
- Leverage Domain knowledge across your expertise tiers by providing access to specify error codes, and identify and naming fields for IP address or transaction IDs for alerts and filters, breaking down silos of knowledge
- Users can be enabled to set up their own reports to summarize logged activity, such as firewall traffic reports, errors and warnings by component, and user login activity. As a result the IT staff will be able to identify specific events, patterns, and threshold for proactive responses before threats are realized.
Event Log Management
It is essential to perform real-time network-wide Event Log monitoring, analysis, and reporting to identify security concerns or incidents taking place that impact business continuity. Furthermore, regulatory agencies require reports and archiving of log data to fulfill compliance auditing and forensic analysis. MonitorIT enables IT and security staff to effectively address these concerns by automatically and centrally monitoring and managing Event Logs – supporting a wide range of event types generated by Windows, applications, devices, and custom events.
- View Event Log files from distributed Windows hosts, Application specific, and custom logs via web based dashboard from anywhere
- Filter Event Log files to collect critical data by breaking down events by Log, Event ID, Type, Description, and more.
- Alert on events and conditions, and automatically initiate remediation steps
- Report events for compliance, security, and support SLAs
- Archive Event Logs for auditing, support corporate retention policies, and future analysis
- Log Maintenance allows you to manage retention policies and clear dated Event Logs
Syslog Management
MonitorIT provides a rule-based method of capturing and filtering incoming Syslog messages for any Syslog exporting system, device or application. The Syslog Server filters Syslog messages by sender, facility, severity, and message content for easy rule creation and to quickly identify important messages. This simple and easy to use solution allows IT staff to associate alert conditions with automated fix actions for known solutions or send a notification to bring attention to a developing condition. A wide range of systems and applications are supported, including Linux/Unix servers, routers, and switches.
- View Syslog messages via web based dashboard from anywhere
- Filter Syslog messages to collect critical data
- Alert on events and conditions, and automatically initiate remediation steps
- Forward Syslog messages to other applications, management systems or Syslog servers
- Report on Syslog events for compliance, security, and support SLAs
- Archive Syslog messages for auditing, support corporate retention policies, and future analysis
