Work with Outputs panel

The Work with Outputs panel allows you to manage Output Targets.

An Output Target defines a location to which formatted SIEM events are sent. Each Output Target can specify a different output format.

NOTE: Fortra's Core Event Manager offers a robust SIEM solution that can be integrated with Powertech SIEM Agent as an Output. Event Manager keeps track of many different points of system access, activity, and events, and notifies the appropriate security personnel or system administrators so that action can be taken before the business is impacted. Because it gathers audit information from multiple operating systems, applications, and devices, it keeps all of your security monitoring in a single location. See Event Manager for more details.

How to Get There

On the Main Menu, choose 3.

Field Descriptions

System

System indicates the target of any operations you perform. When you add items, for example, those items will be sent to, and will affect processing on, the System named.

Opt

Enter a valid option from the list of options provided on the list panel.

2=Change
Opens the Change Output panel, where you can modify the attributes of an Output Target.
3=Copy
Opens the Copy Output panel, which allows you to create a new Output Target by copying the properties and content of an existing Output Target.
4=Delete
Deletes the output. You are prompted to confirm.
5=Display
Opens the Display Output panel, which displays Output Target properties but does not allow them to be changed.
6=Toggle Active
Opens the status of the event from active (1) to inactive (0), or vice versa.
Name

The name you use to refer to this Output Target within Powertech SIEM Agent. It does not need to match the name of any object on the system; it is a name you invent for your reference.

This name is required to be a valid OS name.

Active

Indicates whether the Output Target is available for processing. When the Output Target is not active, it will not have syslog events transmitted to it.

Format

Names the Format that controls how the output event is constructed.

Description

A short description you assign to the Output Target.

Command Keys

F3=Exit

Exit the program.

F5=Refresh

Discards changes and remains on this panel.

F6=Create

Creates a new item. See Create Output panel.

F11=View

Toggles the panel between different views.

F12=Cancel

Discards changes and returns to the prior panel.