Using the Messages tab

The BMC Defender Server Messages facility aggregates, processes, and displays syslog message data from network devices. This gives visibility into all received messages. You can search raw message data, view data catalogs, and configure filters and overrides. You can also create new syslog facilities, that can be used in the correlation process.

Related topics

Using-the-BMC-Defender-Server-interface

Message-Filters-Overrides-and-Configuration-screens

The Search tab utilizes a high-speed indexed search engine supporting advanced searches, and a keyword index that lists all keywords (and their counts) for all messages received. Additional screens in this group allows you to view messages by basic type, such as by device IP address, username, facility, and severity. The Message facility also includes an Auxiliary Message function, that allows the you to view messages that have been filtered from the main message stream, documented here. 

The Messages facility also includes comprehensive configuration options. 

This section provides a description of the Messages tabs on the system, including a discussion of purpose, general usage, and basic application.

This section provides information about the following topics:

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*