Note: This feature is provided on an "as-is" basis and has not been fully tested nor qualified by Blue Coat. Please use at your own risk.
The MA can send all system level events generated now to a remote Syslog server using the built in rsyslogd component which is native to most base Linux distributions. The logs which are sent to a remote server are all system level events and do not include information around the tasks and verdicts generated during an MA analysis.
This capability will be expanded on and included in the base system at a future point.
This tool installs a monitor script for completed tasks, creates the necessary configurations to enable remote syslog, and ensures that the monitor is started with the other MA components. The monitor scripts itself connects to the local (redis) notifications channels for completed tasks and task status changes. Upon task completion, it takes the most relevant information and formats them such that they fit into a syslog message (limited to 2048 bytes).