Submit a ticketCall us

Systems Monitoring for Dummies
Our new eBook will teach you the fundamentals and help you create monitors and alerts that are effective, meaningful, and actionable. Monitoring is more than a checkbox on your to-do list. This free eBook will give you practical advice to help you succeed in all aspects of monitoring – discovery, alerting, remediation, and troubleshooting. Don’t miss out on this indispensable resource for newbies, experienced IT pros, and everyone in between. Register Now.

Home > Success Center > Log & Event Manager (LEM) > Set up Officescan syslog messages with LEM

Set up Officescan syslog messages with LEM

Table of contents
Created by Ezgi Muderrisoglu, last modified by Tim Rush on Oct 21, 2017

Views: 300 Votes: 0 Revisions: 5


This article provides information on how to set up Officescan application sending syslog to LEM.


  • all LEM versions
  • Officescan version 11


Note:The TrendMicro Officescan connector is available under the agent, but under the 'manager' connectors.
Open LEM console > Manage > Nodes > click on the Gear icon of the machine agent where it installed, and then click Connectors.


A. Confirm the syslog sending:

  1. Confirm that the Officescan is configured correctly to send log data to Windows Application log by opening this log from within Windows Event Viewer. If Trend events do not appear in the Windows log,  LEM connectors cannot get them.

B. Confirm the integration of the Windows server and LEM:

  1. Install LEM agent on the Windows server that is hosting the Trend Micro anti-virus. Be sure to install the agent with runas-admin for the install, which give the agent permission to send events to LEM..
  2. Once the Windows server is added/integrated with LEM, the server name should appear on the list of Nodes on your LEM console. 

C. Set up the Connector:

  1. Select the node with this server name. 
  2. Click on the gear icon.
  3. Click on connectors.
  4. For this node, the Officescan connector appears on the list.
  5. Once you have located the Officescan connector, configure the details accordingly with the same location where the syslogs are being sent to (will will be the Application log).



Last modified