Previous Topic: Syslog ConfigurationNext Topic: Technical Information

Platform Deployment GuideLog FilesWrite to Syslog ServersMachine Policy ConfigurationCommon Event Format Configuration

Common Event Format Configuration

CEF messages include an event severity value, between 0 and 10. If you specify ‘Common Event Format’ as the Message Format (see previous section), you can optionally change the default severity values assigned by CA DataMinder. To do this, edit the following settings. Find these in the Infrastructure > Logging > External Logging > Syslog n policy folders:

Error Messages Severity Value

Defaults to 8. This severity value is assigned to error messages and high severity events when sent to Syslog servers as CEF messages.

Warning Messages Severity Value

Defaults to 5. This severity value is assigned to warning messages and medium severity events when sent to Syslog servers as CEF messages.

Information Messages Severity Value

Defaults to 1. This severity value is assigned to Information messages and low severity events when sent to Syslog servers as CEF messages.

Note: Policy incident log messages classify events as Low, Medium, or High severity.

More information:

About Policy Incident Logs