EventLog Analyzer collects, normalizes, and aggregates security, systems, directory service, dns server and application log data from enterprise-wide Windows, Linux, and UNIX hosts, and syslogs from Routers, Switches, and any other syslog devices.
The following are some of the key features of the release.
Feature | Description |
---|---|
Centralized event log management |
Application, system, and security event data is collected from enterprise-wide and distributed Windows, UNIX, and Linux systems, and syslogs from Cisco Routers & Switches are stored in a central (inbuilt MySQL) database |
Compliance reporting |
View pre-defined compliance reports which meet the HIPAA, GLBA, SOX, and PCI requirements. |
Automatic alerting |
View alerts based on event, event category, event type, event ID, log message contents, host, or host groups. |
Historical trending |
View trends of system events on a particular host or host group. This is especially useful during performance analysis. |
Security analysis |
identify unauthorized and failed logins, and errant users. Such analysis helps to reduce the reaction time to unforeseen events. |
Pre-defined event reports | view reports on top events, top hosts, etc. across hosts, host groups, users, and even processes. |
Multiple report formats |
export reports in HTML, PDF, and CSV formats. |