Products
Applications
Support
Company
How To Buy
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Register
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Home
Communities
All Communities
Enterprise Software
Mainframe Software
Symantec Enterprise
Blogs
All Blogs
Enterprise Software
Mainframe Software
Symantec Enterprise
Events
All Events
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Water Cooler
Groups
Enterprise Software
Mainframe Software
Symantec Enterprise
Members
Symantec IGA
Private Community
View Only
Community Home
Threads
Library
Events
Members
Back to discussions
Expand all
|
Collapse all
sort by most recent
sort by thread
Identity Suite - rsyslog
Jump to
Best Answer
William Cheang
Sep 11, 2019 06:38 AM
Hi Team, Based on documentation, there is rsyslog function to forward log to Splunk. Q. Can we forward ...
Scott Owens
Sep 11, 2019 11:00 AM
Best Answer
For monitoring or log analysis purposes, you can forward the central log to a remote Syslog server by ...
William Cheang
Sep 11, 2019 09:41 PM
Hi Scott, i already read the rsyslog information from Docops. The documentation did not mentioned what ...
Scott Owens
Sep 13, 2019 08:22 AM
The central log service merges all application logs to a single log file: /opt/CA/VirtualAppliance/centralLogs/vapp_central.log ...
HOCK KEONG QUAH
Sep 24, 2019 04:03 AM
Hi Scott, Do we need to deploy the Central Log Service for the rsyslog to work?------------------------------------------- ...
1.
Identity Suite - rsyslog
0
Recommend
William Cheang
Posted Sep 11, 2019 06:38 AM
Reply
Reply Privately
Options Dropdown
Hi Team,
Based on documentation, there is rsyslog function to forward log to Splunk.
Q. Can we forward Identity Portal/Manager wildfly logs to Splunk ?
Q. Can we forward the above logs without using Central Log module ?
regards,
William
2.
RE: Identity Suite - rsyslog
Best Answer
0
Recommend
Broadcom Employee
Scott Owens
Posted Sep 11, 2019 11:00 AM
Reply
Reply Privately
Options Dropdown
For monitoring or log analysis purposes, you can forward the central log to a remote Syslog server by Modify the following Syslog configuration file: /etc/rsyslog.d/rsyslog-custom.conf
Enable a forwarding rule. Examples: Forwarding to a remote syslog server using UDP: *.* @<Remote_Syslog_IP_Address>:514 Forwarding to a remote syslog server using TCP: *.* @@<ip_address.of.remote.syslog>:514
After the central log is forwarded to a remote Syslog server, you can use applications such as Splunk to monitor and analyze the log.
https://docops.ca.com/ca-identity-suite/14-2/en/virtual-appliance/monitoring-virtual-appliance#MonitoringVirtualAppliance-MonitoringwithLogForwarding
http://www.rsyslog.com/receiving-messages-from-a-remote-system/
http://www.rsyslog.com/sending-messages-to-a-remote-syslog-server/
------------------------------
Best regards,
Scott Owens
Sr Support Engineer
Enterprise Software Division
Broadcom Inc.
------------------------------
Original Message
Original Message:
Sent: 09-11-2019 06:38 AM
From: William Cheang
Subject: Identity Suite - rsyslog
Hi Team,
Based on documentation, there is rsyslog function to forward log to Splunk.
Q. Can we forward Identity Portal/Manager wildfly logs to Splunk ?
Q. Can we forward the above logs without using Central Log module ?
regards,
William
3.
RE: Identity Suite - rsyslog
0
Recommend
William Cheang
Posted Sep 11, 2019 09:41 PM
Reply
Reply Privately
Options Dropdown
Hi Scott, i already read the rsyslog information from Docops.
The documentation did not mentioned what kind of log file is been forward to remote Syslog server.
Where to configure what kind of log file will be forward to remote Syslog server ?
regards,
William
Original Message
Original Message:
Sent: 09-11-2019 10:59 AM
From: SCOTT Owens
Subject: Identity Suite - rsyslog
For monitoring or log analysis purposes, you can forward the central log to a remote Syslog server by Modify the following Syslog configuration file: /etc/rsyslog.d/rsyslog-custom.conf
Enable a forwarding rule. Examples: Forwarding to a remote syslog server using UDP: *.* @<Remote_Syslog_IP_Address>:514 Forwarding to a remote syslog server using TCP: *.* @@<ip_address.of.remote.syslog>:514
After the central log is forwarded to a remote Syslog server, you can use applications such as Splunk to monitor and analyze the log.
https://docops.ca.com/ca-identity-suite/14-2/en/virtual-appliance/monitoring-virtual-appliance#MonitoringVirtualAppliance-MonitoringwithLogForwarding
http://www.rsyslog.com/receiving-messages-from-a-remote-system/
http://www.rsyslog.com/sending-messages-to-a-remote-syslog-server/
------------------------------
Best regards,
Scott Owens
Sr Support Engineer
Enterprise Software Division
Broadcom Inc.
Original Message:
Sent: 09-11-2019 06:38 AM
From: William Cheang
Subject: Identity Suite - rsyslog
Hi Team,
Based on documentation, there is rsyslog function to forward log to Splunk.
Q. Can we forward Identity Portal/Manager wildfly logs to Splunk ?
Q. Can we forward the above logs without using Central Log module ?
regards,
William
4.
RE: Identity Suite - rsyslog
0
Recommend
Broadcom Employee
Scott Owens
Posted Sep 13, 2019 08:22 AM
Reply
Reply Privately
Options Dropdown
The central log service merges all application logs to a single log file: /opt/CA/VirtualAppliance/centralLogs/vapp_central.log
Once the central log is forwarded to a remote Syslog server, you can use applications such as splunk to monitor and analyze the log.
------------------------------
Best regards,
Scott Owens
Sr Support Engineer
Enterprise Software Division
Broadcom Inc.
------------------------------
Original Message
Original Message:
Sent: 09-11-2019 09:41 PM
From: William Cheang
Subject: Identity Suite - rsyslog
Hi Scott, i already read the rsyslog information from Docops.
The documentation did not mentioned what kind of log file is been forward to remote Syslog server.
Where to configure what kind of log file will be forward to remote Syslog server ?
regards,
William
Original Message:
Sent: 09-11-2019 10:59 AM
From: SCOTT Owens
Subject: Identity Suite - rsyslog
For monitoring or log analysis purposes, you can forward the central log to a remote Syslog server by Modify the following Syslog configuration file: /etc/rsyslog.d/rsyslog-custom.conf
Enable a forwarding rule. Examples: Forwarding to a remote syslog server using UDP: *.* @<Remote_Syslog_IP_Address>:514 Forwarding to a remote syslog server using TCP: *.* @@<ip_address.of.remote.syslog>:514
After the central log is forwarded to a remote Syslog server, you can use applications such as Splunk to monitor and analyze the log.
https://docops.ca.com/ca-identity-suite/14-2/en/virtual-appliance/monitoring-virtual-appliance#MonitoringVirtualAppliance-MonitoringwithLogForwarding
http://www.rsyslog.com/receiving-messages-from-a-remote-system/
http://www.rsyslog.com/sending-messages-to-a-remote-syslog-server/
------------------------------
Best regards,
Scott Owens
Sr Support Engineer
Enterprise Software Division
Broadcom Inc.
Original Message:
Sent: 09-11-2019 06:38 AM
From: William Cheang
Subject: Identity Suite - rsyslog
Hi Team,
Based on documentation, there is rsyslog function to forward log to Splunk.
Q. Can we forward Identity Portal/Manager wildfly logs to Splunk ?
Q. Can we forward the above logs without using Central Log module ?
regards,
William
5.
RE: Identity Suite - rsyslog
0
Recommend
HOCK KEONG QUAH
Posted Sep 24, 2019 04:03 AM
Reply
Reply Privately
Options Dropdown
Hi Scott,
Do we need to deploy the Central Log Service for the rsyslog to work?
Original Message
Original Message:
Sent: 09-13-2019 08:22 AM
From: SCOTT Owens
Subject: Identity Suite - rsyslog
The central log service merges all application logs to a single log file: /opt/CA/VirtualAppliance/centralLogs/vapp_central.log
Once the central log is forwarded to a remote Syslog server, you can use applications such as splunk to monitor and analyze the log.
------------------------------
Best regards,
Scott Owens
Sr Support Engineer
Enterprise Software Division
Broadcom Inc.
Original Message:
Sent: 09-11-2019 09:41 PM
From: William Cheang
Subject: Identity Suite - rsyslog
Hi Scott, i already read the rsyslog information from Docops.
The documentation did not mentioned what kind of log file is been forward to remote Syslog server.
Where to configure what kind of log file will be forward to remote Syslog server ?
regards,
William
Original Message:
Sent: 09-11-2019 10:59 AM
From: SCOTT Owens
Subject: Identity Suite - rsyslog
For monitoring or log analysis purposes, you can forward the central log to a remote Syslog server by Modify the following Syslog configuration file: /etc/rsyslog.d/rsyslog-custom.conf
Enable a forwarding rule. Examples: Forwarding to a remote syslog server using UDP: *.* @<Remote_Syslog_IP_Address>:514 Forwarding to a remote syslog server using TCP: *.* @@<ip_address.of.remote.syslog>:514
After the central log is forwarded to a remote Syslog server, you can use applications such as Splunk to monitor and analyze the log.
https://docops.ca.com/ca-identity-suite/14-2/en/virtual-appliance/monitoring-virtual-appliance#MonitoringVirtualAppliance-MonitoringwithLogForwarding
http://www.rsyslog.com/receiving-messages-from-a-remote-system/
http://www.rsyslog.com/sending-messages-to-a-remote-syslog-server/
------------------------------
Best regards,
Scott Owens
Sr Support Engineer
Enterprise Software Division
Broadcom Inc.
Original Message:
Sent: 09-11-2019 06:38 AM
From: William Cheang
Subject: Identity Suite - rsyslog
Hi Team,
Based on documentation, there is rsyslog function to forward log to Splunk.
Q. Can we forward Identity Portal/Manager wildfly logs to Splunk ?
Q. Can we forward the above logs without using Central Log module ?
regards,
William
×
New Best Answer
This thread already has a best answer. Would you like to mark this message as the new best answer?
Copyright 2019. All rights reserved.
Powered by Higher Logic