Supported Data Sources
Log Sources Supported for Compliant Log Management & Storage:
Support includes compliant storage of all log files. Text log files may also be analyzed via text search, and can be used to create additional event detail for full analysis, even if the log source is not listed below.
| Universal Log Support |
| All Event Logs |
| All Syslog, Syslog-NG |
| All Application Logs |
| All Host / Server / OS Logs |
| Binary Logs |
| others |
Log & Data Sources for Full Analysis:
Support includes full parsing and normalization of data sources into a common data management engine. This engine uses broad indexing and data enhancement techniques to provide a high level of context—for an unprecedented level of detail and performance.
| AntiVirus |
| McAfee | McAfee Antivirus |
| Symantec | Symantec Anti Virus |
| Symantec | Symantec Endpoint Protection |
| Trend Micro | Trend Micro Control Manager (IMSS and IWSS) |
| Applications |
| Airtight Interactive | Airtight Interactive |
| Apache | Apache |
| Blue Lance | BlueLance LT Auditor + for Novell Netware |
| Cisco | Cisco SDEE |
| Cisco | TACACS+ |
| Citrix | Citrix Secure Access Gateway |
| CoreTrace | Bouncer |
| McAfee | McAfee ePolicy Orchestrator (EPO) |
| Microsoft | Microsoft Windows |
| SafeNet | Safenet HSM |
| Symantec | Symantec Mail Security for SMTP |
| NitroSecurity | NitroView ADM — Supported Application & Document Types |
| Authentication |
| Alcatel-Lucent | Info Express Cyber Gatekeeper LAN |
| Cisco | TACACS+ |
| Cisco | TACPlus |
| FreeRadius | FreeRADIUS Authentication |
| Microsoft | Active Directory |
| RSA | RSA Authentication Manager (windows) |
| RSA | RSA Authentication Manager (UNIX) |
| RSA | Authentication Manager (windows) |
| RSA | Authentication Manager (UNIX) |
| Tivoli | Tivoli Access Manager |
| Database |
| IBM | DB2 |
| Microsoft | Microsoft SQL Server |
| Microsoft | MySQL |
| NitroSecurity | NitroView DBM |
| Oracle | Oracle Common Audit |
| Oracle | Oracle Fine-Grained Audit |
| Sybase | Sybase |
| Tripwire | Tripwire For Server |
| For additional database monitoring, consider database activity monitoring using NitroView DBM |
| Firewall |
| Check Point | Check Point Edge W32 and WU |
| Check Point | Check Point Enterprise and Enterprise Pro |
| Check Point | Check Point Express |
| Check Point | Check Point FW-1 Limited |
| Check Point | "Check Point FW1, NG, NGX Standard" |
| Check Point | Check Point Smart Center Enterprise Pro |
| Cisco | Cisco ASA |
| Cisco | Cisco Firewall and Service Module |
| Cisco | Cisco IOS Firewall |
| Cisco | "Cisco IOS ACL, IOS FW, IOS IDS " |
| Cisco | Cisco PIX |
| Cisco | Cisco PIX IDS |
| CyberGuard | "CyberGuard (includes FS, SG, SL)" |
| Fortinet | Fortinet Fortigate |
| Juniper | Juniper Netscreen Firewall |
| McAfee | Secure Computing Sidewinder |
| Microsoft | Microsoft ISA Server |
| NitroSecurity | NitroSecurity IPS |
| Nokia | Nokia IPSO |
| SonicWALL | SonicWALL FW |
| Stonesoft | Stonesoft Stonegate Firewall /VPN |
| Stonesoft | Stonesoft Stonegate Management Center |
| Symantec | Symantec Enterprise Firewall |
| Zonelabs | Zonelabs Integrity |
| Host / Server / Operating Systems |
| Cisco | CATOS |
| HP | HP-UX (Hewlett-Packard) |
| IBM | IBM AIX OS |
| IBM | ISS Desktop Protector |
| IBM | ISS Real Secure Server Sensor |
| ISA | Snare |
| LINUX | LINUX |
| Microsoft | Microsoft IIS |
| Microsoft | Microsoft Operations Manager |
| Microsoft | WMI |
| Red Hat | Red Hat Linux OS Events |
| Sun | Solaris BSM |
| Sun | Solaris OS Events |
| Symantec | Symantec Intruder Alert |
| Type 80 | Type 80 SMA_RT |
| VMWare | VMWare Server (version 1 to 4) |
| IDS / IPS |
| Check Point | Network Flight Recorder / Check Point IPS-1 |
| Cisco | Cisco ACS |
| Cisco | Cisco CSA |
| Cisco | Cisco Guard |
| Cisco | Cisco IDS |
| Cisco | Cisco IDSM |
| Cisco | Cisco IOS IDS |
| Cisco | Cisco IOS IPS |
| Cisco | Cisco IPS |
| Enterasys | Enterasys Dragon Sensor/Squire |
| Juniper | Juniper Netscreen IDP |
| Lancope | Lancope Stealth Watch |
| McAfee | McAfee HIPS |
| McAfee | McAfee Intrushield |
| PacketAlarm | PacketAlarm IPS |
| Radware | Radware DefensePro |
| Sourcefire | Snort NIDS |
| Sourcefire | Sourcefire Intrusion Sensor |
| Stonesoft | Stonesoft Stonegate IPS |
| Symantec | Symantec Critical System Protection |
| Symantec | Symantec HIDS |
| Symantec | Symantec ManHunt |
| TippingPoint | Tippingpoint Unitity One |
| Top Layer | TopLayer Attack Mitigator |
| Tripwire | Tripwire NIDS |
| For intrusion prevention with built-in firewall & network flow collection, consider using NitroGuard IPS |
| Mainframes |
| CA | Datacom |
| IBM | z/OS |
| IBM | z/VM |
| Network Switches & Routers |
| Airdefense | Airdefense |
| Arbor | Arbor Peakflow DoS/SP |
| Arbor | Arbor Peakflow X |
| Bradford | Bradford Campus Manager |
| Brocade | "Foundry BigIron, FastIron and NetIron" |
| Cisco | Cisco CCA (NAC Appliance) |
| Cisco | Cisco IOS ACL |
| Cisco | Cisco Wireless LAN Controllers |
| Cisco | NetFlow (Generic) |
| HP | HP ProCurve |
| Juniper | Juniper Netscreen Security Manager |
| Juniper | Juniper Routers (JunOS) |
| Mirage Networks | Mirage Counterpoint |
| netIQ | netIQ Security Manager |
| sFlow | sFlow (Generic) |
| For additional network flow collection, consider using NitroGuard IPS |
| Security Appliances / UTMs |
| Barracuda | Barracuda SPAM Filter |
| Barracuda | Barracuda Web Security Gateways |
| Virtual Private Networks |
| Check Point | Check Point HA VPN-1 |
| Check Point | Check Point VPN Pro |
| Check Point | Check Point VPN-1 Edge |
| Check Point | Check Point VPN-1 Express |
| Cisco | Cisco VPN Concentrator |
| Cisco | Cisco VSM (VPN Switch Blade) |
| Juniper | Juniper Secure Access SSL VPN |
| Nortel | Nortel Contivity |
| Symantec | Symantec Enterprise VPN |
| Vulnerability Systems |
| Lumension | Lumension Scan |
| McAfee | Foundstone Foundscan |
| Nessus | Nessus |
| Qualys | Qualys |
| Rapid 7 | Rapid 7 |
| Saint | Saint Vulnerability Scanner |
| eEye | eEye |
| nCircle | IP360 Scanner |
| Web Content, Filtering, Proxies |
| Blue Coat | Blue Coat SG Series |
| Cisco | Cisco Content Engine |
| Cisco | Cisco IronPort |
| Cisco | Cisco MARS |
| Citrix | Citrix NetScaler |
| F5 | ASN |
| IBM | ISS Site Protector |
| McAfee | McAfee WebShield |
| Microsoft | Microsoft SCOM |
| Secure Computing | IronMail |
| Squid | Squid Proxy |
| Sun | iPlanet |
| TippingPoint | Tippingpoint SMS 2.0 Format |
| Websense | Websense Enterprise |
| Other |
| IBM | ISS Real Secure Network Sensor |
| Microsoft | Microsoft Exchange Server |
| Microsoft | Microsoft Active Directory |
| NitroSecurity | Nitro Plug-in Protocol |
| NitroSecurity | NitroSecurity SNMP |
The list of supported devices is subject to change without notice.
These icons link to social bookmarking sites to help share this content.
Log in
