×
The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.
I wrote a process to export to Graylog syslog server that is working well.
It uses httpapi to post the data.
What SIEM system are you reporting to ?
Cheers
Don
From: "Gerald Magnuson" <gmagqcy.midrange@xxxxxxxxx>
To: "midrange-l@xxxxxxxxxxxxxxxxxx" <midrange-l@xxxxxxxxxxxxxxxxxx>
Date: 27/01/2022 08:04 AM
Subject: setting up my IBM i to push syslog entries to an external
SIEM server.
Sent by: "MIDRANGE-L" <midrange-l-bounces@xxxxxxxxxxxxxxxxxx>
I have been tasked to "push" events and notifications on to our new SIEM
software.
I have a high level of auditing already turned on, and have extracted
audit
journal data via SQL in the past.
I don't really want to buy anymore software if I don't have to. Does the
IBM i have all the components to push QSYSOPR, and audit entries on to a
SIEM?
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact
[javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
