The Product Events screen lists the events associated with each logging application. The information provided on events and event fields is required to define query statements, Notification Filters, and Heartbeat Notifications.
However, before you can view a logging applications events, you must first import its log schema. The log schema catalogues the events that may be logged for a given application. It also provides the event descriptions and field labels that iManager uses in its query results.
NOTE: For an explanation of event fields, see Event Structure.
To import a logging applications log schema,
Under the Nsure Audit role, click the Query Configuration task.
The Query Configuration screen appears.
In the Query Configuration screen, click Product Events.
Enter the distinguished name (DN) of the Secure Logging Server.
NOTE: If you have multiple logging servers, enter the distinguished name of the logging server that loads the Application object configuration at startup. For an explanation, Managing Applications that Log to Nsure Audit in the Novell Nsure Audit Administration Guide.
Click the Object Selector button
to locate the object in the directory tree.
To move up or down in the tree, click the navigation arrows. You may also search the tree by entering the object name and context in the Search frame.
NOTE: iManager only links valid entries.
OR
Click the Object History button
to see a list of Logging Server objects that have been selected
during this iManager session.
From the drop-down list box, select which language version of the log schema you want to import.
NOTE: If an application does not have a log schema for the selected language, iManager imports the applications English log schema.
Click Update.
When you click Update, iManager connects to the logging server and imports the log schemas for all the logging applications that have Application objects in the logging servers supported Application containers.
The logging applications and their associated events now appear in the Product Name list.
Once you have added an applications log schema, you may remove the schema by marking the checkbox next to the product name and clicking Delete.
Deleting an application from the Product Name list only prevents you from viewing the applications events in the Product Events tab. iManager still queries the applications events.
To view a logging applications events,
In the Product Events screen, click the plus icon
next to the product name to expand a list of the applications
associated events.
NOTE: Only those events catalogued in the applications log schema appear in this list.
Select an event to view the event ID, description, and field definitions.
For more information on event fields, see Event Structure.
Events can be added, modified, and deleted using the links in the Product List.
To add a new event type, select a product, then click New Event. To modify or delete an event, select the event, then click Edit Event or Delete Event.
For more information on queries, see Creating, Editing and Deleting Queries, Running Queries, or Exporting Query Results.
For more information on using Nsure Audit, see Nsure Audit Help.
A trademark symbol (®, TM,
etc.) denotes a Novell trademark. An asterisk (*) denotes a
third-party trademark. For information on trademarks, see Legal
Notices.