The Department of IT provides Centralized Logging as a system-wide service that collects and analyzes server and application logs.
Logs are a critical part of any system; they:
- Record activity occurring on the system
- Indicate sources of problems
- Detect security incidents, operational problems and policy violations
- Provide information in auditing and forensics situations.
To comply with privacy and data security regulations, collecting and analyzing log files is required for any system that handles Data Classification System (DCS) Level 3 and higher data.
Centralized Logging Service involves the installation and/or configuration of a local logging agent program, storage of logged system messages, and alerts on specific log details (if desired). This program processes logs on each server then forwards them to our log consolidation system, known as SSIM. This agent program (snare) manipulates the logs so we can store them in a common format and also forwards them in a timely basis to a central log collector and backup collector for redundancy.
- Configuration process
- Reporting and alerting
- Specific event codes
- How long logs are retained and when they can be purged
- Applicable laws/regulations
- Ongoing maintenance and support as needed
There are no fees associated with this service.
This service is provided for MU departments. Requests must be made by an IT Pro.
(For IT Pros only)
Use MyServices to request a consultation.
For additional assistance, contact Tech Support at 573.882.5000.