Submit a ticketCall us

AnnouncementsTHWACKcamp 2018 is here

2018 is the seventh year for THWACKcamp™, and once again we’ll be live October 17 – 18 with packed session tracks covering everything from network monitoring and management, to change control, application management, storage, cloud and DevOps, security, automation, virtualization, mapping, logging, and more.

Register for online sessions.

Home > Success Center > Log & Event Manager (LEM) > LEM - Knowledgebase Articles > Set up Officescan syslog messages with LEM

Set up Officescan syslog messages with LEM

Table of contents
Created by Ezgi Muderrisoglu, last modified by Tim Rush on Oct 21, 2017

Views: 1,561 Votes: 0 Revisions: 5

Overview

This article provides information on how to set up Officescan application sending syslog to LEM.

Environment

  • all LEM versions
  • Officescan version 11

Steps

Note:The TrendMicro Officescan connector is available under the agent, but under the 'manager' connectors.
Open LEM console > Manage > Nodes > click on the Gear icon of the machine agent where it installed, and then click Connectors.

 

A. Confirm the syslog sending:

  1. Confirm that the Officescan is configured correctly to send log data to Windows Application log by opening this log from within Windows Event Viewer. If Trend events do not appear in the Windows log,  LEM connectors cannot get them.

B. Confirm the integration of the Windows server and LEM:

  1. Install LEM agent on the Windows server that is hosting the Trend Micro anti-virus. Be sure to install the agent with runas-admin for the install, which give the agent permission to send events to LEM..
  2. Once the Windows server is added/integrated with LEM, the server name should appear on the list of Nodes on your LEM console. 

C. Set up the Connector:

  1. Select the node with this server name. 
  2. Click on the gear icon.
  3. Click on connectors.
  4. For this node, the Officescan connector appears on the list.
  5. Once you have located the Officescan connector, configure the details accordingly with the same location where the syslogs are being sent to (will will be the Application log).

 

 

Last modified

Tags

Classifications

Public