System Log
The System Log screen shows a list of all system events (for example, Policy turned on, Policy edited, Event Resolved, and so on.) that occurred in the system. This log includes both user-initiated events as well as automatically occurring system events (for example, Policy turned off automatically because of too many hits). This log does not include policy-generated events, which you can view on the Events screen. You can export the logs as a CSV file. You can also configure the system to send the System Log events to a Syslog server.
Each logged event includes the following details:
| Parameter | Description |
|---|---|
| Time | The time and date when the event occurred. |
| Event | A brief description of the event that occurred. |
| Username | The name of the user that initiated the event. For events that occur automatically, no username is given. |
Sending System Log to a Syslog Server
To configure the system to send system events to a Syslog server:
-
Go to Local Settings > System Log.
-
In the upper-right corner, click the drop-down box to display the list of servers.
Note: To add a Syslog server, see Syslog Servers. -
Select the desired server.
OT Security sends the System Log events to the specified Syslog server.