Event Log Management Solution for Sarbane Oxley

Posted on 2004-10-29
Last Modified: 2013-12-03
I am the coordinator of Sarbane Oxley audit in my company, and looking for Event log management solution to keep track all my windows log files and Unix syslog. I found that most of the event management software available in the market are Windows-centric, and able to find one with both, which is "Event Tracker from Prism Microsystem". My question is any other product available in the market that can serve both Windows and Unix?
Question by:belim
    LVL 4

    Expert Comment

    We use Dorian which is WinCentric but is very good too.

    I have heard very good things about Kiwi I'd take a look at them.

    Event Log Manager (ELM) is another product that I'm not very familiar with. It seems like when I was researching, it lacked features, but that's been a while & I could be remembering wrong so you could take a look.

    Another consideration would be to put a syslog daemon on your winders machines and then use your *nix syslog and reporting mechanisms. The only caveat I have there is that I think you would still need to archive your windows logs in .evt. If you ever needed to prosecute somebody, the reformatted messages may not be admissable as evidence in court. It should be fine for general audit types of purposes though.

    The last caveat I have is that I once had a syslog-like utility (Kane Secure Enterprise) and it would suck the logs off the machines in realtime. So if somebody was trying to figure out a problem, they could be trying to look at the error logs locally and they would instead see them scrolling off the screen. Then we'd have to go to the KSE monitor and sort through logs to find what we wanted. So anyway, just be careful because as important as logs are to you in your mission, they can be equally important to others in theirs.

    Good Luck!


    Author Comment

    I am looking for Enterprise solution.KiwiSyslog is too simple, i am looking for something that can fulfill 4 processes, they are Collect, Store or Archive, Analyse, and report.
    LVL 7

    Accepted Solution

    > My question is any other product available in the market that can serve both Windows and Unix?
    Not that I know of but your can customise. Below are some links to resources.

    syslog Client Configs for Windows/Non-UNIX

    Logging via Syslog

    Hope it's useful...;-)
    LVL 7

    Expert Comment

    Here's another arcticle which may be useful for you.

    How to Monitor Windows NT from Unix

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone. Privacy Policy Terms of Use

    Featured Post

    Prepare to Pass the CompTIA A+ 900 Series Exam

    CompTIA aims to adapt its A+ Certification to reflect the most current knowledge and skills needed by today's IT professionals--and this year's 2016 exam is harder than ever. This certification is one of the most highly-respected and sought after in IT.

    When the confidentiality and security of your data is a must, trust the highly encrypted cloud fax portfolio used by 12 million businesses worldwide, including nearly half of the Fortune 500.
    Ransomware continues to be a growing problem for both personal and business users alike and Antivirus companies are still struggling to find a reliable way to protect you from this dangerous threat.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…

    877 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    13 Experts available now in Live!

    Get 1:1 Help Now