Logging and Monitoring
Logging Overview
Ivanti Policy Secure(IPS) provides logging and monitoring capabilities to help you track events and user activities. The system generates event logs related to system performance, administrator actions, network communications, access management framework results, user sessions, and so forth.
The available logs, includes:
- Event Logs- This file contains a variety of system events, such as session timeouts, systems errors and warnings, server restart notifications and connectivity requests.
- User Access Logs- This file contains information about when the user access the appliance, time, number of simultaneous users, user sign-ins and sign-outs.
- Admin Access Logs- This file contains administration information, including administrator changes to user, system and network settings, such as changes to session timeouts, license changes and so on.
The system supports the following log collection methods:
- Local log collector and log viewer.
- Reporting to syslog servers.
- Reporting to SNMP servers.
The following table describes the event log severity levels.
|
Severity Level |
Description |
|---|---|
|
Critical |
The system cannot serve user and administrator requests or loses functionality to a majority of subsystems. |
|
Major |
The system loses functionality in one or more subsystems, but users can still access the system for other access mechanisms. |
|
Minor |
The system encounters an error that does not correspond to a major failure in a subsystem. Minor events generally correspond to individual request failures. |
|
Info |
The system writes an informational event to the log when a user makes a request or when an administrator makes a modification. |
In addition to managing system logs, you can use the admin console to configure collection of client-side logs, including Host Checker logs.