Syslog and SIEM
tools such as Kiwi, Splunk, Envision, ArcSight and other event log management tools often need middleware like the CPA
to forward system logs, database audit and other non-conforming events into a usable Syslog or SIEM format. IBM System i and Mainframe are 2 platform examples that use non-standardized formats Syslog Servers and SIEM can't use. Event log transfers can be scheduled to send and receive in intervals or in near real-time mode. The CPA can also store events in its SQL Database and serve as IT Audit Data Warehouse for long term reporting requirements. The CPA Syslog service enabled by allows integration of these disparate systems by processing and forwarding event log events like: QAUDJRN, DB2 Database, IBM SQL, Network (Exit Program), System (QHST and Message QUEUE), Security Policy, IP Packet, Administrator, and Alert events into a format a Syslog server can use.