Endpoint Protection

 View Only

  • 1.  Tenable and syslogging

    Posted Nov 09, 2009 03:37 AM
    Hi,

    Is there a list of event that can be sent to a syslog server from the SEP11 Managers?
    (So we can create a correct "filter" for the software tenable.)



  • 2.  RE: Tenable and syslogging

    Posted Nov 09, 2009 03:44 AM

    Syslog Server.JPG
    You have several choices for exporting the data in your logs. You can export the data in some logs to a comma-delimited text file. You can export other logs' data to a tab-delimited text file that is called a dump file or to a Syslog server. Log data export is useful if you want to accumulate all logs from your entire network in a centralized location. Log data export is also useful if you want to use a third-party program such as a spreadsheet to organize or manipulate the data. You also might want to export the data in your logs before you delete log records.

    When you export log data to a Syslog server, you must configure the Syslog server to receive those logs. To forward logs to third-party programs, you need to have the third-party program installed and on the network. For example, you can use Microsoft Excel to open the exported log files. Each field appears in a separate column, a separate log record in each line.

     




  • 3.  RE: Tenable and syslogging

    Posted Nov 09, 2009 03:50 AM
    Under General you can configure Syslog Logging  ( forwarding logs to syslog server)
    then you can select the Log FIlter.



  • 4.  RE: Tenable and syslogging

    Posted Nov 10, 2009 06:48 AM
    This a know.
    But is there a list (*.txt) of event , like a text file.
    What type of event that can be sent to the syslog server?


  • 5.  RE: Tenable and syslogging
    Best Answer

    Posted Nov 10, 2009 07:24 AM
     This is the only Configuration Avaialble from SEPM for Syslog.