What is Silvertail Syslog syntax
Originally Published: 2013-06-24
Article Number
Issue
Resolution
We rely on the syslog facility to write the logs so the message are consistent to syslog.
The format is as follows.
Date Time hostname source(sts_component_name)[PID]:[severity level keyword] {component instance #} {component instance #-dup} message
IE: Nov 1 01:01:15 silvertswddprc mitigator[8540]:[crit] 0 0 message
The numbers between severity level keyword and message represent the instanceID of the component.
Some components can have multiple instances running on the same server.
In such cases, the instanceID would tell the difference.
The PID would be different as well but the Instance would tie it back to the service name which also ends with the instanceID
Related Articles
How to configure RSA Authentication Manager 8.4 or later to send data to multiple remote syslog servers Number of Views How to send Operating System logs in /var/log/messages file to a remote syslog server in RSA Authentication Manager 8.6 o… Number of Views Understanding RSA Authentication Manager logging fields when they are forwarded to syslog Number of Views How to verify RSA Authentication Manager (AM) 8.1 is sending syslog data to a remote syslog server. Number of Views Active Directory AFX test connector capability fails with 'Invalid DN Syntax' and 'Error processing name' errors in RSA Id… Number of Views
Trending Articles
How to manipulate imported RSA SecurID Software Token(s) on an iPhone or iPad device Artifacts to gather in RSA Identity Governance & Lifecycle RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.7 SP2 Setup and Configuration Guide How to Download OTP Token Seed Files from myRSA
Don't see what you're looking for?
