Help banner

Query Configuration - Product Events

The Product Events screen lists the events associated with each logging application. The information provided on events and event fields is required to define query statements, Notification Filters, and Heartbeat Notifications.

However, before you can view a logging application’s events, you must first import its log schema. The log schema catalogues the events that may be logged for a given application. It also provides the event descriptions and field labels that iManager uses in its query results.

NOTE: For an explanation of event fields, see Event Structure.

 

Importing Log Schemas

To import a logging application’s log schema,

  1. Under the Nsure Audit role, click the Query Configuration task.

    The Query Configuration screen appears.

  2. In the Query Configuration screen, click Product Events.

  3. Enter the distinguished name (DN) of the Secure Logging Server.

    NOTE: If you have multiple logging servers, enter the distinguished name of the logging server that loads the Application object configuration at startup. For an explanation, “Managing Applications that Log to Nsure Audit” in the Novell Nsure Audit Administration Guide.

    1. Click the Object Selector button to locate the object in the directory tree.

      To move up or down in the tree, click the navigation arrows. You may also search the tree by entering the object name and context in the Search frame.

      NOTE: iManager only links valid entries.

    OR

    1. Click the Object History button to see a list of Logging Server objects that have been selected during this iManager session.

  4. From the drop-down list box, select which language version of the log schema you want to import.

    NOTE: If an application does not have a log schema for the selected language, iManager imports the application’s English log schema.

  5. Click Update.

    When you click Update, iManager connects to the logging server and imports the log schemas for all the logging applications that have Application objects in the logging server’s supported Application containers.

The logging applications and their associated events now appear in the Product Name list.

 

Deleting Log Schemas

Once you have added an application’s log schema, you may remove the schema by marking the checkbox next to the product name and clicking Delete.

Deleting an application from the Product Name list only prevents you from viewing the application’s events in the Product Events tab. iManager still queries the application’s events.

 

Viewing Product Events

To view a logging application’s events,

  1. In the Product Events screen, click the plus icon next to the product name to expand a list of the application’s associated events.

    NOTE: Only those events catalogued in the application’s log schema appear in this list.

  2. Select an event to view the event ID, description, and field definitions.

    For more information on event fields, see Event Structure.

Adding, Editing, and Deleting Events

Events can be added, modified, and deleted using the links in the Product List.

To add a new event type, select a product, then click New Event. To modify or delete an event, select the event, then click Edit Event or Delete Event.

For more information on queries, see Creating, Editing and Deleting Queries, Running Queries, or Exporting Query Results.

For more information on using Nsure Audit, see Nsure Audit Help.

A trademark symbol (®, TM, etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party trademark. For information on trademarks, see Legal Notices.