Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

External Systems Configuration Guide

Lantronix SLC Console Manager

What is Discovered and Monitored

Protocol

Information discovered

Metrics/Logs collected

Used for

Syslog

Admin access, Updates, Commands run

Log analysis and compliance

Event Types

 Around 10 event types are generated by parsing Lantronix SLC logs. The complete list can be found in ADMIN > Device Support > Event by searching for Lantronix-SLC. Some important ones are:

  • Lantronix-SLC-RunCmd
  • Lantronix-SLC-Update
  • Lantronix-SLC-User-Logon-Success

Configuration

FortiSIEM processes events from this device via syslog.  Configure the device to send syslog to FortiSIEM as directed in the device's product documentation, and FortiSIEM will parse the contents.

Example Syslog

<174>xmsd: gen/info-Syslog server changed to 10.4.3.37
<38>xwsd[32415]: auth/info-Web Authentication Success for user andbr003

Lantronix SLC Console Manager

What is Discovered and Monitored

Protocol

Information discovered

Metrics/Logs collected

Used for

Syslog

Admin access, Updates, Commands run

Log analysis and compliance

Event Types

 Around 10 event types are generated by parsing Lantronix SLC logs. The complete list can be found in ADMIN > Device Support > Event by searching for Lantronix-SLC. Some important ones are:

  • Lantronix-SLC-RunCmd
  • Lantronix-SLC-Update
  • Lantronix-SLC-User-Logon-Success

Configuration

FortiSIEM processes events from this device via syslog.  Configure the device to send syslog to FortiSIEM as directed in the device's product documentation, and FortiSIEM will parse the contents.

Example Syslog

<174>xmsd: gen/info-Syslog server changed to 10.4.3.37
<38>xwsd[32415]: auth/info-Web Authentication Success for user andbr003