Idea ID 2778607
Allow for the default ingestion of specific logs of interest within the Transformation Hub environment.
Application and Authentication logs for the Transformation Hub may be required due to security policy for certain customers. These are of security context as having insight into changes made, accounts accessed could help identify security issues with the solution.
I would suggest, building an easy way for a customer to ingest these logs if required. A potential solution to this would be a checkbox for securiy log monitoring of the solution in the setup, which could create a seperate topic with these internal transformation hub based application and access logs. Once being written to a topic, these could easily be forwarded to the required destinations
The value of this is that we leverage the solution to easily create access to logs for monitoring health and security of the environment. These events are much like the ArcSight events found in ESM and by having it as an option, could assist those that may require this visibiity within their security environment via native integration
Have an option in the installer to select the internal Transformation Hub logs and write them to its own topic. This topic can then be leveraged to subscribe to going forward if/when required
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.