While browsing the site, I can not identify if the Enterprise version, with the “Managed Services” option includes the collection and analysis of Logs?
We would like to do a POC within 2 to 3 months, in order to choose our IT / Apps supervision solution !
We need log analysis in two formats:
Syslog
Log files from our different applications
We are looking for a correlation of events between different components that can generate logs:
Radius
OTP
LDAP
…
We would like to avoid a parallel integration of an ELK stack (for example)
The problem will be that CMK has no component you can use as a central log sink.
The EventConsole is to generate events from a log stream. If this is sufficient for your needs then it can be used.
In my bigger systems with a high volume of logs i use an ELK stack or Graylog beside the CMK system for the aggregation of all the logs.
as usual, the answer is “what he said” - meaning @andreas-doehler
The Event Console does offer quite a few things to process log messages. If you are looking for more advanced features like you mention (i.e. event correlation) or just plain very high volumes of logs, Checkmk might not be the right tool for that particular job. This problem might be better handled by a (lightweight) integration between Checkmk and a tool better suited to your log-related requirements, to get a “best of breed”.
If you decide to go ahead with the POC, be sure to reach out to us at tribe29! We try to help where we can in setting up a POC and answering questions you might have.
This topic was automatically closed 365 days after the last reply. New replies are no longer allowed. Contact @fayepal if you think this should be re-opened.