Overview
1
®
Novell
Sentinel
Log Manager collects data from a wide variety of devices and applications,
TM
including intrusion detection systems, firewalls, operating systems, routers, Web servers, databases,
switches, mainframes, and antivirus event sources. Novell Sentinel Log Manager provides high
event-rate processing, long-term data retention, regional data aggregation, and simple searching and
reporting functionality for a broad range of applications and devices.
Section 1.1, "Novell Sentinel Log Manager Features," on page 11
Section 1.2, "Novell Sentinel Log Manager Interface," on page 11
Section 1.3, "Architecture," on page 11
Section 1.4, "Terminologies," on page 11
1.1 Novell Sentinel Log Manager Features
For more information about Sentinel Log Manager features, see
Features" in the
Sentinel Log Manager 1.0.0.4 Installation
1.2 Novell Sentinel Log Manager Interface
For more information about Sentinel Log Manager Web interface, see
Manager
Interface" in the
1.3 Architecture
For more information about Sentinel Log Manager architecture, see "Architecture" in the
Log Manager 1.0.0.4 Installation
1.4 Terminologies
This section describes the terminologies used in this document.
Collectors: Collectors parse the data and deliver a richer event stream by injecting taxonomy,
exploit detection, and business relevance into the data stream before events are correlated, analyzed,
and sent to the database.
Connectors: The Connectors use industry standard methods to connect to the data source to get raw
data.
Data Retention: The data retention policy defines the duration for which the events remain and
deleted from the Sentinel Log Manager server.
Event Source Management: The Event Source Management (ESM) interface allows you to
manage and monitor connections between Sentinel
Connectors and Sentinel Collectors.
Sentinel Log Manager 1.0.0.4 Installation
Guide.
"Novell Sentinel Log Manager
Guide.
"Novell Sentinel Log
Guide.
and its event sources by using Sentinel
TM
1
Sentinel
Overview
11