Type80 SYSLOG for z/OS enables extension of all mainframe console messages and write-to-operator messages to be routed to external log retention servers using the industry standard Syslog protocol. This allows for easy integration with any centralized security activities within the enterprise such as SIM, SIEM, or log consolidation products. Type80 SYSLOG messages are sent in Real-time, and provide a cost effective way to monitor z/OS for basic compliance as part of an Enterprise-wide security program.
The Type80 SYSLOG product is an assembler written application residing within an LPAR on z/OS. Each LPAR requires an instance of Type80’s SYSLOG software to be active to achieve complete enterprise monitoring. Type80’s SYSLOG is a started task (STC) process activated at the start of z/OS. The Type80 SYSLOG STC collects console messages, messages from batch jobs, CICS, DB2, and all other WTO messages from within the LPAR.
Unlike Type80’s SMA_RT software, Type80’s SYSLOG cannot collect or evaluate data from SMF records, it cannot filter out unwanted messages or make event or rule based decisions defined by the Security Administrator.