RSA Admin

AIX and syslog-ng agent

Discussion created by RSA Admin Employee on Oct 7, 2013
Latest reply on Oct 14, 2013 by RSA Admin

If You use syslog-ng instead of syslogd, the message format is a little bit different. Messages do not contain "Message forwarded from" string , a ":" is missing right after the host field and the hostname is extended with the sourcename defined in syslog-ng.conf ( e.g. MYHOST --> s_local@MYHOST).

It is enough for enVision not to recognize any message.

Does anyone have a solution to produce the expected message format with syslog-ng ?

Outcomes