8 Security Logs and Alarms

The Security Log page in the GUI allows you to view the application's historical security logs from all the configured security logs. These logs are displayed in a scrollable, optionally filterable table. You can also export the security logs to the file management area in a .csv format. For more details, see the Security Log chapter in the Operation, Administration, and Maintenance (OAM) Guide.

Application Alarms and Events are unsolicited messages used in the system for trouble notification and to communicate the status of the system to the Operations Services. The application merges unsolicited alarm messages and unsolicited informational messages from all servers in a network and notifies their occurrence to you. Security alarms enable a network manager to detect security events early and take corrective action to prevent degradation in the quality of service.

Alarms provide information about the operational condition of a system for a network manager to act upon when the need arises. Alarms can have the following severity:

• Critical
• Major
• Minor
• Cleared

For more information, see the Alarms and Events and Security Log chapters in Alarms and KPIs Reference Guide, Measurements Reference Guide and DSR Operation, Administration, and Maintenance (OAM) Guide.

OS-level logging is captured in:

• /var/log/messages – general system messages
• /var/log/secure – security related messages
• /var/log/httpd (directory) – apache webserver logging