Someone also sent this along.
https://www.ibm.com/support/pages/syslog-syslogd-pase-ibm-i


Respectfully,
Michael Mayer
IBM i on Power System Admin
ERMCO-ECI
2225 Industrial Rd
Dyersburg, Tennessee 38024
Office and OnCall: 731.676.4318
Cell: 518.641.8906
Email: michael.mayer@xxxxxxxxxxxxx
https://www.ermco-eci.com/
IBM i Personal Blog: https://ibmireference.blogspot.com/
"Success is not final. Failure is not fatal. It is the courage to continue that counts".








-----Original Message-----
From: Michael Mayer
Sent: Thursday, August 31, 2023 2:32 PM
To: midrange-l@xxxxxxxxxxxxxxxxxx
Subject: subject: Question on IBM i and integrating SIEM software.

Thanks Bryan!

Respectfully,
Michael Mayer
IBM i on Power System Admin
ERMCO-ECI
2225 Industrial Rd
Dyersburg, Tennessee 38024
Office and OnCall: 731.676.4318
Cell: 518.641.8906
Email: michael.mayer@xxxxxxxxxxxxx
https://www.ermco-eci.com/
IBM i Personal Blog: https://ibmireference.blogspot.com/
"Success is not final. Failure is not fatal. It is the courage to continue that counts".



----------------------------------------------------------------------

message: 1
date: Thu, 31 Aug 2023 18:55:50 +0000
from: Michael Mayer <michael.mayer@xxxxxxxxxxxxx>
subject: Question on IBM i and integrating SIEM software.

Good afternoon everyone.
I have been tasked into researching linking up our IBM i's (Power 10's @ V7R4) to a SIEM syslog.

Has anyone done this recently? If so, what was your experience. What software if any, did you use to implement your process?

You would think with IBM i Reference Pages Blog that I built for the IBM i community that I would have something like this to look up. I could message the security vendors on the blog but thought I'd reach out here for input. You guys always have info on just about everything that is brought to the table.

You can reach me here, via email or even via the blog site.
Thank you everyone.

Respectfully,
Michael Mayer
IBM i on Power System Admin
ERMCO-ECI
2225 Industrial Rd
Dyersburg, Tennessee 38024
Office and OnCall: 731.676.4318
Cell: 518.641.8906
Email:?michael.mayer@xxxxxxxxxxxxx
https://www.ermco-eci.com/
IBM i Personal Blog: https://ibmireference.blogspot.com/
"Success is not final. Failure is not fatal. It is the courage to continue that counts".







------------------------------

message: 2
date: Thu, 31 Aug 2023 14:05:55 -0500
from: Bryan Dietz <bdietz400@xxxxxxxxx>
subject: Re: Question on IBM i and integrating SIEM software.

have a look at the "syslog" option for the following.
This is how you would most likely provide data to a SIEM server

https://www.ibm.com/docs/en/i/7.4?topic=services-display-journal-table-function
https://www.ibm.com/docs/en/i/7.4?topic=services-history-log-info-table-function


Bryan



Michael Mayer wrote on 8/31/2023 1:55 PM:
Good afternoon everyone.
I have been tasked into researching linking up our IBM i's (Power 10's
@ V7R4) to a SIEM syslog.

Has anyone done this recently? If so, what was your experience. What
software if any, did you use to implement your process?

You would think with IBM i Reference Pages Blog that I built for the
IBM i community that I would have something like this to look up. I
could message the security vendors on the blog but thought I'd reach
out here for input. You guys always have info on just about everything that is brought to the table.

You can reach me here, via email or even via the blog site.
Thank you everyone.

Respectfully,
Michael Mayer
IBM i on Power System Admin
ERMCO-ECI
2225 Industrial Rd
Dyersburg, Tennessee 38024
Office and OnCall: 731.676.4318
Cell: 518.641.8906
Email:?michael.mayer@xxxxxxxxxxxxx
https://www/.
ermco-eci.com%2F&data=05%7C01%7Cmichael.mayer%40ermco-eci.com%7C38113e
be240b466f765a08dbaa5755f5%7Cd2deeaf270e4425c91d7d99d784e89d6%7C0%7C0%
7C638291064310021682%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQI
joiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=HIDnDW
HyHAdnW9H9R%2B%2BdjKhuZxOkauY15XVvH4MU%2B%2F0%3D&reserved=0
IBM i Personal Blog:
https://ibmi/
reference.blogspot.com%2F&data=05%7C01%7Cmichael.mayer%40ermco-eci.com
%7C38113ebe240b466f765a08dbaa5755f5%7Cd2deeaf270e4425c91d7d99d784e89d6
%7C0%7C0%7C638291064310021682%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAw
MDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sda
ta=yGlNRp3MtdPcS6T7XV5HvNrbSEgYoTgVz6ke39Ar7hw%3D&reserved=0
"Success is not final. Failure is not fatal. It is the courage to continue that counts".






--

-- .
Bryan


------------------------------

*****

As an Amazon Associate we earn from qualifying purchases.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.