Compliance Event Manager CEMALERT task not writing Security Violations to Database
Article ID: 219143
Updated On:
Products
Compliance Event Manager
Issue/Introduction
Security violations are occurring and reported via the CEMALERT task. However, they do not appear to be written to the database. Is this by design, or is something missing in the Policy statement?
Environment
Release : 6.0
Component : CA COMPLIANCE EVENT MANAGER
Cause
By design.
Resolution
By design, the CEMALERT task will not write to the database for security events. The CEMALERT task for security violations will perform WTO's, Emails, SIEM, SPLUNK, and SYSPRINT operations. You will want to use Logger or Warehouse to capture security events and then populate the Database.
Note: Logger updates the repository via the Datamart utility.
Feedback
Yes
No
Powered by
