Skip to Content

Checking the installation

When the system is up and running, you can test and verify the installation by using the sendlog program, that is included in the 

BMC Defender Agent for Unix/Linux

installation. For example, you might encounter a problem with the installation if a firewall or port blocker prevents CO-logmon from sending syslog messages across the network. You can test that by using the following procedure to send an initial syslog message and verify that the BMC AMI Command Center for Security and BMC Defender SIEM Correlation Server (also known as BMC Defender Server) is listening for messages:

  1. At a shell prompt on the BMC Defender platform, enter:
    sendlog (hostName)  “First Test Message.” 7 1 
    Replace hostName with the destination host name or IP address of the platform running the syslog receiver software, or the BMC Defender Server entered into the installation dialog.

    Warning

    Note

     You can enter sendlog –help at a Unix shell prompt to get more information about the sendlog command, including its syntax.

  2. Verify that a message from the platform appeared in the syslog section of the web interface.
    The facility is user(1), and the severity is debug(7).

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Defender Agent for Unix/Linux 6.1