Home » User Interface EventLog Analyzer » User Interface Tabs

User Interface Tabs EventLog Analyzer


In the EventLog Analyzer client screen, there are tabs for the different functionality. The tabs are:

  • Home
  • Reports
  • Compliance
  • Search
  • Alerts
  • Settings  

Home tab

The Home tab contains Dashboard, Hosts, and Applications tabs.

Dashboard

EventLog Analyzer dashboard is loaded with useful graphs. The graphs are All Events, Alerts, Important Events, Event Category, Security Events, and Log Trend. It is customizable and can present a user specific segmented view. Each user can create dashboard profiles. A profile can have one or more host groups. The default profile is ‘All Groups’ and this profile cannot be deleted.

Hosts   

All the profiles of the dashboard are available for Hosts tab also. New hosts can be added. New report can be created/ scheduled. All the hosts added to EventLog Analyzer are listed. Bulk of hosts can be disabled or deleted. Hostname or IP address can be viewed for hosts. The host type, event summary, connection status of the host, last time the log was fetched, and host group to which the host is assigned are displayed in the table. The table columns can be customized. Number of lines per page view can be set. Standard page navigations icons are present.

Applications

The applications are grouped based on the log format and each group of applications can be viewed separately. New Oracle, Print Server applications can be added. New application logs can be imported. There is a link to view the logs imported in to EventLog Analyzer. All the application logs imported to EventLog Analyzer are listed. Bulk of application logs can be deleted. Associated host is displayed for the application logs. Click on the hosts to drill down to the events specific to the application logs of the host. The application type, total events, number of recent records imported, last log imported time, start time, and end time are displayed in the table. Click on the event count to drill down to the raw logs. The table columns can be customized. Number of lines per page view can be set. Standard page navigations icons are present.

Reports tab

The custom reports and pre-built reports are displayed in the Reports tab. Custom report can be created, modified, deleted, scheduled, rescheduled and the report profiles can be imported, exported.

The pre-built reports available are top N reports, user activity reports, trend reports, detailed application reports, and detailed host reports. The top N reports covers the most number of, user accessed hosts, logged in users, interactive logins, hosts based on event severity, and processes based on event severity.

Compliance tab

The Compliance tab displays the compliance reports for various regulatory compliance acts. The acts are PCI-DSS, FISMA, HIPAA, SOX, and GLBA. Various sections of the acts covered by each report are described. Modify the existing compliance reports to suit specific requirements. Add a new compliance report. This is a futuristic feature, which will be useful when a new compliance mandate comes into force. 

Search tab

The Search tab allows to search the logs in two modes Basic and Advanced. The search result is displayed in this pages and the result can be saved as EventLog Analyzer reports. Use ‘Basic’ search to search a value directly, field value pairs with relational operators. Number of field value pairs can be grouped and associated using boolean operators. Use ‘Advanced’ search to form the search query with field value pairs with relational operators. The fields can be grouped with boolean operators.
From both the search results, new, additional fields can be extracted to get them indexed and searched.

Alerts tab

The Alerts tab displays all the alert profiles and alerts generated by EventLog Analyzer. New alert profiles can be created and existing alert profiles can be disabled, modified, and deleted. The alert profiles can be exported and imported.

Settings tab

The Settings tab allows various kinds of configuration settings which can be carried out in EventLog Analyzer. It has three sections, Configurations, Admin Settings, and System Settings.

Configuration

In this section, Manage Hosts, Manage Apps, Import, Archive, Report Profile, Alert, Noise Filter, and Export Profile can be configured.

Admin Settings

In this section, Install Agent, Manage User, DB Storage Settings, and External Authentication can be configured.

System Settings

In this section, Working Hour Setting, Configure Email/ SMS, ELA Configuration, Manage Compliance, Log Collector Alert, Server Diagnostics, Access Database, and Rebranding can be configured.

 

 
Copyright © 2013, ZOHO Corp. All Rights Reserved.
ManageEngine