This CA Enterprise Log Manager Administration Guide addresses tasks performed after the Administrator installs CA User Activity Reporting Module and performs initial server configuration. Some of these tasks are performed to accommodate infrequent changes in the system; others are routine tasks performed on a scheduled basis; still others are ongoing monitoring tasks.
This guide is intended for all audiences, including the following:
This guide includes a glossary of terms and an index. A summary of the contents follows:
|
Section |
Describes how to |
|---|---|
|
User Accounts |
Configure user accounts with predefined roles and self-administer user accounts |
|
Policies |
Plan custom roles and associated policies by leveraging predefined roles and policies |
|
Custom Roles and Policies |
Restrict user access with custom roles, custom policies, and access filters |
|
Services and CA Adapters |
Configure the event log store, report server, subscription service, and certain event adapters |
|
Log Storage |
Configure auto-archive and restore archived databases. |
|
Subscription |
Maintain the subscription configuration, apply updates, and restore a subscription backup |
|
Filters and Profiles |
Limit the data displayed in one report or query or in all reports and queries with filters. Limit the tag list, query list, and report list with profiles. |
|
Queries and Reports |
Create, edit, and import or export queries and reports to view current and recent event logs. |
|
Action Alerts |
Create an action alert to notify users or SNMP trap destinations or to run an IT PAM process when specified events occur |
|
Scheduled Reports |
Schedule and maintain report jobs; view and annotate generated reports |
|
Suppression and Summarization |
Create and use summarization and suppression rules to reduce server load and prevent collection or processing of unwanted events |
|
Mapping and Parsing |
Create and use mapping and parsing rules to refine raw events in various formats into standardized, CEG-compatible values and also create event forwarding rules |
|
Integrations and Connectors |
Create product integrations, which when deployed as connectors, let you refine and transmit events from a single event source to the CA User Activity Reporting Module server |
|
Event Correlation and Incident Management |
Create event correlation rules that recognize patterns of events, called incidents. Merge, modify and delete incidents as required. |
|
Event Collection Profiles |
Create collection profiles to help deploy event collection in virtual environments using the virtual API. |
|
Agents |
Plan agent usage, prepare for agent installation, configure agents and agent groups, and apply subscription updates to agents |
|
Custom Certificates |
Implement custom certificates to replace the predefined certificates. |
|
Accessibility Features |
Use accessibility controls |
|
Accessing Collected Events with ODBC/JDBC |
Configure custom reports with a third-party reporting utility or retrieve selected log information with third-party products |
Note: For details on operating system support or system requirements, see the Release Notes. For a tutorial on getting a single-system up and running so you can view results of queries on collected syslog and Windows events, see the Overview Guide. For step-by-step procedures on installing CA User Activity Reporting Module and performing initial configuration, see the Implementation Guide. For details on installing agents, see the Agent Installation Guide. For help on using any CA User Activity Reporting Module page, see the online help.
|
Copyright © 2013 CA.
All rights reserved.
|
|