Logmanager

Log Management / Security Information and Event Management (SIEM): Logmanager

Click to explore the offer:

What is Logmanager?

Logmanager is an advanced software solution for the central collection, management, monitoring, analysis and correlation of log data from a variety of sources in the IT infrastructure, enhanced with SIEM (Security Information and Event Management) type capabilities. It is a tool that greatly simplifies the work of IT teams, enabling them to detect and resolve problems more quickly and ensure greater security of systems. The system is designed to bridge the gap between traditional log management solutions and open-source systems. Dedicated to medium-sized organisations, it is easy to use, maintain and implement, equipped with all the most important functionalities and with a very good price/quality ratio thanks to the integrated hardware platform and the absence of licences limiting log collection performance.

Free consultation

Logmanager features

Main features and functions of Logmanager

System and user management:

System overview

Monitoring of Logmanager instance performance and system information in one place (e.g. database indexing speed, system load, CPU usage, event disk queue size, DNS response times).

Unlimited log sources

Logmanager handles any text logs from endpoints, servers, networks, cloud workloads, operating systems and other sources.

Role-based access control (RBAC)

Manage user rights, by assigning system or database permissions, ensuring secure and streamlined access.

Data storage

Logmanager is a hardened system that ensures the security and immutability of stored logs for investigative, audit and other purposes.

User management

Ability to manage user accounts and control permissions centrally thanks to the role-based access control (RBAC) system.

LDAP authentication

Can be used to authenticate users accessing the system.

System backups

Ability to back up databases and configurations to ensure business continuity in the event of an unexpected event.

Logmanager monitoring

Log collection and monitoring:

Central log collection

The system allows logs to be collected from multiple sources and accessed from a unified interface.

Transmission of logs

Precise filtered log forwarding via syslog. Captured logs and events can be forwarded to third-party systems such as SIEM.

Tagging and enrichment of logs

Ability to use tags to enhance readability and improve log retrieval. Logs can be enriched with contextual information such as location, security/operations/compliance data, device type, supplier, etc.

Windows monitoring

Ability to manage, configure and update all Windows agents remotely via a centralised user interface.

Ready-made parsers

Logmanager offers more than 140 predefined parsing rules for retrieving and normalising data from various sources.

Monitoring Microsoft 365 and Office 365

Ability to collect, sort and analyze logs from any Microsoft 365 and Office 365 licenses.c

Custom parsers

Ability to create and verify custom parsing rules for proprietary data.

Logmanager analysis

Analysis and reporting

Predefined and customised dashboards

Ability to use predefined views or easily create custom dashboards that show data based on input queries and filters.

Role-based alert logic (RBAC)

Ability to assign roles to team members and enable them to receive alerts based on their roles, subsidiaries, job functions (e.g. security, operations, management) or a combination of these parameters.

Log analytics

Ability to use filters, analysis of detailed and contextual data to derive certain patterns, trends or events.

Correlation of events

Ability to tie in events occurring in your IT environment to investigate patterns, anomalies and malicious activity.

Searching, filtering and viewing logs

Seamless search of log data using an intuitive interface, without the need for a complex query language.

Report templates

Ability to use predefined reports or create your own, as well as generate reports based on dashboard templates.

Logmanager tools

Support and development tools

Blockly code designer. Ability to use Blockly's visual programming editor to easily enhance Logmanager with custom rules without writing coding scripts.

Free consultation

Why Logmanager

Why use Logmanager?

Speed of action in the event of a critical failure or incident

Logmanager provides a single source that an administrator can tap into and quickly retrieve logs generated by servers, applications or network devices prior to an outage to perform a detailed analysis of the incident context information, correctly identify the cause of the incident and quickly take effective action.

Compliance with regulations

Logmanager allows you to meet the requirements under various legislation and standards such as GDPR, NIST CSF, PCI-DSS, ISO 27001:2013 for proper log management. In any organisation, logs must be properly analysed, user activity recorded, and data from critical systems must be archived and retained for a specific period of time.

Auditing and reporting

The Logmanager allows information to be presented not only in graphical form, but also in a CSV file with a structure defined according to audit requirements.

Proactive action

The alert functionality allows early detection of emerging problems and thus enables them to be resolved quickly, before they can cause serious damage.

Security

One of the key aspects of security is the guarantee of data integrity, i.e. protection against falsification, the ability to proactively detect incidents and the tracking of configuration changes. A log once stored in the Logmanager database cannot be deleted or modified, which is crucial in a situation where an attacker effectively obliterates traces of his or her activity in the network behind them.

Simplicity

Logmanager's distinguishing features include fast implementation, a short training cycle and a simple web GUI interface that can be operated even by less experienced team members.