Ability to log flat files from 3rd party applications. It would be great to be able to choose a .log file created from an application and have that data be recorded in LEM.
When I purchased LEM it was to replace a syslog aggregator (LogLogic) that could pull any text log on any system. I thought the LEM would be able to do this especially with an agent on the system. But it doesnt.
Please work on a way that the agent can pull a text log file. We have a TON of these that we need in a central repository. And they can't be sent to the LEM via syslog...
Thanks guys!!!
This is one of the show stoppers we've had from moving to LEM fully and currently fill this requirement using Splunk.
We are starting to use Splunk for non-windows log files.
It handles large files with ease and you can use regular expressions to do searching across windows or unix based OS's.
It scales well and allows various groups to utilize the data without having to have rights on the server.
We have been doing this with powershell but with the volume we have it is too resource intensive as well as not scalable.
Splunk understands a number of different log file formats and can learn new formats as well.
LEM just falls short in my opinion on several levels.
But I will vote up because that is functionality that should already be there.
My InfoSec director just setup a meeting with Splunk. Years ago I asked for more time to see if these feature requests could be added, but they still are not available.
Hate it, but Splunk may be taking LEM over at my place....
flat file bump
Lets make it a #bumpsquad bump !
