Message screens

The BMC Defender Server messages application aggregates, processes and displays syslog message data from network devices. This gives visibility into all received messages. You can search raw message data, view data catalogs, and configure filters and overrides. You can also create new syslog facilities, that can be used in the correlation process.

The Search screen employs a high-speed indexed search engine supporting advanced searches, and a keyword index that lists all keywords (and their counts) for all messages received. Additional screens in this group allows you to view messages by basic type, such as by device IP address, username, facility, and severity. The Message facility also includes an Auxiliary Message function, that allows the you to view messages that have been filtered from the main message stream, documented here. 

This section provides a description of primary Message screens on the system, including a discussion of purpose, general usage, and basic application. 

Note

The Message facility includes a comprehensive Configuration capability (available using the Messages > Config tab). 

This section provides information about the following topics:

Related topics

Using-the-BMC-Defender-Server-interface

Message-Filters-Overrides-and-Configuration-screens

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*