Configuring Data Retention Policies; Raw Data Retention Policy; Event Data Retention Policies - Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010 Administration Manual

Hide thumbs Also See for SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010:

Installation manual (38 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

page of 168

/ 168
Contents
Table of Contents
Bookmarks

Table of Contents

11 After copying the files, select the Copy Done option to start data archiving to the new location.

12 Click Cancel to return to the previous archive configuration.

3.3 Configuring Data Retention Policies

You can configure one or more data retention policies to control the duration for which specific

types of events are retained in the Sentinel Log Manager. A retention policy contains a filter that is

used to identify the events for which the retention policy applies and the minimum and maximum

number of days these events should be kept in the system. Except for the Raw Data Retention policy,

all of the configured policies apply to the event data.

The configured retention policies are displayed in the Data Retention policy table. By default, data

retention policy is refreshed every 30 seconds to reflect the changes made by multiple users. For

every 30 seconds, the refresh operation synchronizes the policy table and reflects the changes made

to the retention policies by multiple administrators.

Section 3.3.1, "Raw Data Retention Policy," on page 34

Section 3.3.2, "Event Data Retention Policies," on page 34

Section 3.3.3, "Rules for Applying Appropriate Retention Policy," on page 37

3.3.1 Raw Data Retention Policy

The raw data retention policy controls how long the raw data is kept in the system before being

deleted. The data retention policy table contains a raw data retention policy. Like the default data

retention policies for events, the Raw Data Retention policy cannot be deleted or disabled. However,

you can change the Keep at most (number of days after which the raw data file is deleted) and Keep

at Least (minimum number of days the raw data file is kept) values.

The process to delete raw data runs when the server is started, for every one hour (because the raw

data files are closed every one hour), and whenever the Keep at most value is changed. All the files

exceeding the retention time are removed permanently from the local and archive storage locations.

3.3.2 Event Data Retention Policies

The event data retention policies control how long different types of event data are kept in the

system before being deleted.

"Adding a Data Retention Policy" on page 34

"Activating or Deactivating a Data Retention Policy" on page 36

"Editing a Data Retention Policy" on page 36

"Deleting a Data Retention Policy" on page 36

Adding a Data Retention Policy

1 Log in to the Sentinel Log Manager as an administrator.

2 Click the storage link in the upper left corner of the page.

The Storage tab appears on the right pane of the page.

3 Click the Configuration tab.

Sentinel Log Manager 1.0.0.4 Administration Guide

Table of Contents

This manual is also suitable for:

Sentinel log manager 1.0.0.5

Configuring Data Retention Policies; Raw Data Retention Policy; Event Data Retention Policies - Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010 Administration Manual

3.3 Configuring Data Retention Policies

3.3.1 Raw Data Retention Policy

3.3.2 Event Data Retention Policies

Related Manuals for Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010

Related Content for Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010

This manual is also suitable for:

Table of Contents