The version 10.4 of InTrust advances in all three main capabilities attributed to successful event log management products. Continue here.
Posts Tagged ‘event log management’
Latest and greatest InTrust version 10.4 comes out of the door
January 25, 2012OnDemand Log Management: Now supporting syslog, agent less collection and more
August 25, 2011OnDemand Log Management gets exciting new features that help you comply with IT regulations, stay on top of changes to critical IT resources and detect and react to security issues. Continue here.
Get critical events in real time to your inbox
October 21, 2010Have you ever caught yourself thinking that you don’t actually know what you should be searching for when you are on the Search tab of the nice and slick OnDemand Log Management UI?
Have you ever questioned yourself why you have to check for critical events by yourself instead of having the product do that for your and only interfere with your other business when your attention is really required?
I did and so did quite a few of you according to the feedback you’ve been generously sharing with this. So I’m pleased to tell you that you’ve been heard!
During last couple of weeks we made a couple of exiting feature updates for you.
Now every time you log into the event log management service you can start with any of the pre-defined searches which we put for all service users or you happened to craft by yourself some time ago and found helpful enough for ongoing use. You can customize any of the pre-defined searches down the road by adding column filters, adjusting the search criteria and changing the set of fields being displayed in the results view. Finally found a needle in the haystack and want to save the time you spent on building the resulting query? Just add your search to the favorites and start with it next time.
Check out a set of the canned searches we provide for you today and tell us what’s missing!
Favorite searches is not just a shortcut to start an investigation. Any saved search can now be run in real time against every new event that is collected from your entire network. All events matching the search criteria that you defined in your alert-enabled searches will be immediately sent to the specified email address. Don’t want to be spammed by notifications? Subscribe do hourly or daily digests with a full list of critical events.
See the nice and concise video on the Dmitry’s blog that clearly shows how easy setting up alerts really is
So, now OnDemand Log Management can be used in entirely unattended mode. If you don’t have much time to do daily analysis right in the service UI then just set up alerts and get back to your business – the service will take care of all the important things happening in your network.
It’s nice to see how the cloud based event log management service is becoming a neat operation tool. Indeed alert enabled searches set you up for monitoring of security incidents and operational issues. And the same searches can be later used to find the root cause of the issue by looking up events that preceded it.
See another video that shows how OnDemand Log Management can help you track and investigate one of the most distracting operational issues these days – service account lockouts.
Stay tuned.
OnDemand Log Management feature update in July
July 26, 2010It’s been over a month since we’ve been exploring a new cloud venue with our SaaS products. One of the exiting changes that we couldn’t help noticing is how frequently we get to update our products with new features. I’m sure this is one of the sweetest things our customers continue enjoying in the cloud thanks to absolutely zero effort product upgrade. Indeed, all new features appear instantly next time you launch your favorite browser. No annoying compatibility issues, no lengthy software assurance testing before rolling out to production, no manual reconfiguration – it’s all been taken care of for you!
With this post I decided to start broadcasting updates to features of the SaaS product I’ve been working on – Quest OnDemand Log Management. During the last couple of weeks the event log management service received the following improvements:
- Face lift. The service got the whole new design that is consistent across entire line of OnDemand products. I personally find the new design more polished and ergonomic than the previous one. You just go ahead and log into the product to check it out and let us know what you think about it. If you haven’t yet signed up for the service you can do that here
- Field picker. Now you’re free to choose a set of event fields being displayed in your search results.
If you haven’t dealt with the event logs much and all you need to know is “who did what” in your environment then just stick with the default selection of W5 fields (Who, What, Where, When, Where From).
If you mastered Windows Security log and feel a need to see events as they originally appear in the event log then just pull native event fields into the view: EventId, Source, Category, User, Computer, etc.
Whatever event fields you choose they all participate in any searches you run. - New reports. You can find a wider selection of pre-defined reports on Security Log events. Moreover, happy customers of Quest Change Auditor can take full advantage of the event log management in the cloud which now includes support for Change Auditor product logs and reports.
- Faster event processing. Some tweaks were made to the event queue processing components living in the cloud. Optimizations made to event metadata processing algorithm resulted in significant performance gain and warranted better service scalability in the long run.
These are just the most notable changes recently made to the product. The list goes on with numerous fixes and optimizations of the service being constantly made. And all this is provided for free with your existing service subscription.
There is more to come soon.
cloudcomputing.info
GoCloudy Blog 