IBM Support

Mapping between Remote Syslog Forwarding source and log files.

Question & Answer


Question

Which log file is sent for each selection of source names in the "Remote Syslog Forwarding" configuration?
I can select following list of names in source configuration.
  • LMI Messages
  • LMI Trace
  • LMI Access
  • Runtime Messages
  • Runtime Trace
  • Runtime Audit
  • Runtime Logs
  • WebSEAL
  • Authorization Server
  • Policy Server
  • Embedded User Registry
  • Cluster
  • System
  • DSC
  • FELB
  • nCipher Hardserver
  • nCipher Watchdog

Answer

Following source names can be referred in "Monitor > Application Log Files" page on LMI.

  • LMI Messages
    • management_ui / messages.log
  • LMI Trace
    • management_ui / trace.log
  • LMI Access
    • management_ui / access.log
  • Runtime Messages (*1)
    • federation / runtime / messages.log
    • access_control / runtime / messages.log
  • Runtime Trace (*1)
    • federation / runtime / trace.log
    • access_control / runtime / trace.log
  • Runtime Audit (*1) (*2)
    • federation / auditting / audit.log
    • access_control / auditting / audit.log
  • Runtime Logs (*1)
    • federation / runtime / (selected file)
    • access_control / runtime / (selected file)
  • Policy Server
    • verify_access_runtime / policy_server / (selected file)
  • Embedded User Registry
    • verify_access_runtime / user_registry / msg__user_registry.log
  • Cluster
    • cluster / msg__cluster_mgr.log
  • DSC
    • dsc / dscd.log
  • FELB
    • felb / msg__felb.log
  • nCipher Hardserver
    • nfast / hardserver.log
  • nCipher Watchdog
    • nfast / watchdog.log
(*1) The federation and access_control tree points same file. Each tree is shown when each function is activated.
(*2) This source is not working on 10.0.5. (APAR IJ46190)
Following source names has individual page for accessing log files on LMI
  • WebSEAL
    1. Visit "Monitor > Manage Reverse Proxy Log Files" page on LMI
    2. Select instance
  • Authorization Server
    1. Visit "Web > Authorization Server" page on LMI
    2. Select instance and open menu "Manage > Logging"
Following source name cannot be access on LMI
  • System
    • /var/log/messages (Standard syslog log file for Unx/Linux OS)

[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSESHP","label":"IBM Security Verify Access Appliance"},"ARM Category":[{"code":"a8m0z000000cxulAAA","label":"Security Verify Access-\u003EAuditing \/ Logging"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]

Document Information

Modified date:
18 April 2023

UID

ibm16984143

Page Feedback