Event/Log Tracking Overview
Often times when a problem occurs in an IT infrastructure the root cause can be found in the logs of the operating system, application server, or middleware. These logs are scattered throughout the infrastructure depending on the product. HQ provides the Event/Log Tracking feature to centralize this data to provide the following benefits:
- Report real-time and historical details of any log event generated by any managed resource
- Track the configuration of any host or application to facilitate impact analysis and change control
- Enforce security policies by detecting and logging any physical or remote access into any host in your environment
- Define alerts to track to specific log messages anywhere in your environment
- Correlate any log event, configuration change, or security event to the availability of your environment
Event/Log Tracking Setup
The following steps describe how to configure Hyperic HQ's Event/Log Tracking feature:
- From the Dashboard or Browse Resources select the Platform that contains the log you want to track
- Click the Configuration Properties accordion tab
- Click Edit
- Check the "Enable Log Tracking" checkbox
- Specify the full path to the log you want to track in the "Log Files" field
- Click OK to save your changes
To view the Event/Log entries that Hyperic HQ has collected:
- Go to the Monitor tab for a platform
- Look at the bottom time line in the Indicator charts section of the page
- Blue squares in the bottom time line represent time slices that contain Event/Log data
- Click the blue squares to view this data
Optionally, you may want to setup an Alert based on the contents of this log:
- Select the same Platform that you configured in the steps above
- Click the "Alert" tab
- Click "New" to create a new alert
- Select "Events/Logs Level:" and the level you want, choose Any if you are not sure which level to choose
- In the text box next to the log level put in the string you want to alert on
- Click OK to save your alert
Labels
(None)