cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
ultimo
Fluorite | Level 6 ultimo
Fluorite | Level 6

Server LOG Management and export to Splunk or others?

Posted 06-27-2019 03:53 AM (1834 views)

Hi,

 

For a SAS IRM/EG/Metadata and other Infrastructure servers (there are multiple servers) from your experience, is there a way to install Splunk Forwarder agents to collect the logs. The Information like certificate expiry, license expiry, user activity, disk usage and activity, startup/shutdown from services and authentification logs?

 

Or do you use some other tool. As I already have Splunk this would be interresant.

 

Thanks in advance.

 

 

Reply
1 REPLY 1
JuanS_OCS
Amethyst | Level 16 JuanS_OCS
Amethyst | Level 16

Re: Server LOG Management and export to Splunk or others?

Posted 06-27-2019 06:15 AM (1817 views)  |   In reply to ultimo

Hello @ultimo,

 

I don't know about Splunk, but I am aware it is a monitoring tool. In this sense, as with any monitoring tool, you will have some out-of-the-box functionality, and then you will need some manual actions, as providing the log locations, extending information of the logs, including patterns to read the logs, etc.

 

In general, you can use many of the monitoring tools out there, as long as you manage to provide this information to the tool.

 

SAS provides out of the box, starting with SAS 9.4, and SAS Viya, a monitoring tool, the SAS Environment Manager, and you can do basically the same, provide location of logs, include patterns to read logs, set alerts .... all the same.

 

Hence, the remaining question, is the additional information. You can do this on many ways. A very easy one is to enable the Extended Monitoring Interface (EMI) for SAS Environment Manager, on which you can enable the ACM, APM and Kits packages, which will provide not only the additional information, but also a bunch of useful reports you can generate through Stored Processes, created already by SAS. Check it out: 

http://support.sas.com/documentation/cdl/en/evug/69029/HTML/default/viewer.htm#n0532grdsxrb63n1429im...

http://support.sas.com/documentation/cdl/en/evug/69029/HTML/default/viewer.htm#p0md48tpfq4yy7n1xxqn0...

 

Other ways, could be to generate your own SAS code for custom logs and extend the logs of the SAs services to the level you require, but it will take time of course.

 

 

Reply

suga badge.PNGThe SAS Users Group for Administrators (SUGA) is open to all SAS administrators and architects who install, update, manage or maintain a SAS deployment. 

Join SUGA 

Get Started with SAS Information Catalog in SAS Viya

SAS technical trainer Erin Winters shows you how to explore assets, create new data discovery agents, schedule data discovery agents, and much more.

Watch Get Started with SAS Information Catalog in SAS Viya on YouTube

Find more tutorials on the SAS Users YouTube channel.

Discussion stats
  • 1 reply
  • ‎06-27-2019 03:53 AM
  • 1835 views
  • 2 likes
  • 2 in conversation