Hi there --
I am testing LogAnalyzer 3.0, with several Linux servers configured to send their log files to the central server. All Linux servers use syslog as the daemon of choice.
While it does appear that LogAnalyzer to be working somewhat, I noticed that a particular log file present on all servers, secure, does not have any entries appearing at the central server. The configuration of the secure file, via the /etc/syslog.conf file, on all servers is shown below:
Code:
# The authpriv file has restricted access.
authpriv.* /var/log/secure
Do I need to make any additional modifications to the syslog.conf or any other file? Thanks.