This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Ruckus Wireless
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How can I send only only the "Most Recent User Activities" to a remote syslog server?

Anonymous
Not applicable

‎09-19-2013 09:52 AM

Can I send only the "Most Recent User Activities" to a remote syslog? I don't want to collect all the radius_client, radius_server, cluster... information. Syslog server is solarwinds. I am running two ZD3000 Active/Stanby configuration.

I need the user information as part of my security logging.
3 REPLIES 3

Anonymous
Not applicable

‎09-20-2013 01:44 AM

You can send all messages to a syslog server and then filter for the ones you need. However looking at my last 10,000 (default) entries there are no "most recent user activities" entries.
Would expect they appear under "info" or "warning" headings but those seem to have few entries. It seems almost everything comes under the "error" and "debug" heading.
Then need to find the exact wording ruckus use for messages that relate to "most recent user activities" and text filter on that.

I'm using syslog watcher personal. In general the log entries tend to be pretty cryptic so don't expect plain english!

In very pragmatic terms if you log everything then you at least have the data to fulfill your security requirement even though you are collecting more than needed. Hmm.
0 Kudos

Anonymous
Not applicable

‎10-15-2014 12:50 AM

hello,
i just installed syslog watcher personal, whats next step?
0 Kudos

Anonymous
Not applicable

‎10-15-2014 09:45 PM

point your zonedirector at your syslog server.
0 Kudos
Copyright © 2026 Khoros, LLC