Help banner

Logging Server Options - Monitor System

The System pages provide information and statistics that reflect events logged over the life of the server, not the server uptime.

There are three levels of information provided in the System pages:

 

System

The System page displays when you click the System link in the Monitor page. It lists the IP addresses and descriptions of the Platform Agents currently logging events to the current Secure Logging Server.

Item

Description

Remove

Removes the selected Platform Agent from the current logging server's configuration. This prevents the Platform Agent from connecting to the logging server, thereby preventing its associated applications from logging events.

 

Edit Description

Allows you to modify the selected Platform Agent's description.

To modify a Platform Agent description:

  1. Select a Platform Agent.

  2. Click Edit Description.

  3. Modify the description text, then click OK.

    The description appears in the Description column.

 

Refresh

Allows you to set the refresh interval for the System page statistics.

Select the interval at which you want the logging server to refresh the server statistics (5, 10, 15, 20, 25, or 30 seconds) or click Stop to stop tracking the page statistics.

 

IP Address

The IP address for the Platform Agent.

 

Applications

The number of applications logging events to the Platform Agent.

 

Total Events

The total number of events logged to the Platform Agent.

 

Description

A user-defined description for the Platform Agent.

The Platform Agent description helps you identify your Platform Agents, particularly if they have dynamic IP addresses.

 

Applications

The Applications page lists the logging applications and instrumentations currently logging events to a given Platform Agent. To view the Applications page, click the IP address for one of the Platform Agents listed on the System page.

Item

Description

Remove

Deletes the selected logging application's associated Application object from the logging server configuration. This prevents the logging application from authenticating with the logging server, thereby preventing it from logging events. For more information on the process used to authenticate logging applications, see the Novell® Audit Administration Guide.

WARNING: If you remove a logging application, you must either reinstall the logging application or manually re-create the logging application's Application object to once again allow the logging application to log events to the logging server.

 

Refresh

Allows you to set the refresh interval for the Applications page statistics.

Select the interval at which you want the logging server to refresh the server statistics (5, 10, 15, 20, 25, or 30 seconds) or click Stop to stop tracking the page statistics.

 

Name

The logging application's Application Identifier; that is, the name the logging application uses to identify itself to the logging server. For more information, see Creating and Configuring Application Objects.

 

ID

The Application ID; that is, the four-digit hex value assigned to the current application. For more information, see Creating and Configuring Application Objects.

 

Events

The number of events logged by the logging application over the life of the current logging server.

 

Status

The logging application status.

An enabled status indicates the logging application is currently logging events to the Platform Agent.

A disabled status indicates the logging application cannot log events to the Platform Agent.

A logging application's status is managed in the Application object. For more information, see Creating and Configuring Application Objects.

 

Timestamp

The time and date the logging application was loaded and started logging events to the Platform Agent.

 

Events

The Events page lists the specific events that have been logged for a given logging application. To view the Events page, click one of the logging applications listed in the Applications page.

Item

Description

Reset

Resets the count for the selected event.

To reset the count for an event:

  1. Select the events you want to reset.

  2. Click Reset.

  3. Click OK to confirm the reset.

 

Remove

Removes an event from the logging application's list of logged events.

If the event occurs again, it is relisted in the events list. However, the event count is reset to 1.

 

Query

Allows you to define a query for the selected events.

To define an event query:

  1. Select the events you want to query.

  2. Click Query.

  3. On the Queries page, select the database where you want to run the query.

  4. Define the query you want to run.

  5. Click Run Query.

 

Refresh

Allows you to set the refresh interval for the Events page statistics.

Select the interval at which you want the logging server to refresh the server statistics (5, 10, 15, 20, 25, or 30 seconds), or click Stop to stop tracking the page statistics.

 

Name

The name of the event.

This information is read from the logging application's log schema file (*.lsc). For more information, see Log Schema Files.

 

Severity

The severity level assigned to the event.

This information is read from the logging application's log schema file (*.lsc). For more information, see Log Schema Files.

 

Count

The number of times the event has been logged since the logging application was loaded and started logging events to the Platform Agent.

 

Timestamp

The most recent occurence of the event.

 

Reset Timestamp

The date and time the count for the event was reset.

 

Related Topics

Configuring the Secure Logging Server

Novell Audit Help

A trademark symbol (®, ™, etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party trademark. For information on trademarks, see Legal Notices.

Close