I am excited to share new capabilities available as part of Log Analysis 1.3.1 which was released earlier on 11 June 2015.
Here are my top favorites – and don’t forget to watch the video towards the end of this post
Log Analysis now supports secured access to data sources based on userâ€™s role. This allows the administrator to configure one or more roles and associate the role with one or more users and data sources. Data Sources correspond to sources like application log directories, database or middleware logs or helpdesk tickets systems from where information is ingested, annotated and indexed.
It is possible to configure Log Analysis to detect anomalies as it receives and processes streaming logs or events in real time. There are several actions that can be specified when such anomalies are detected including sending email notifications, logging the anomaly in a log file or executing a custom script (like creating an incident in a helpdesk system)
Staying with Anomaly Detection, Log Analysis now supports detection of several anomalies including the ability to detect a new value in a field for a data source that was never seen before. This is particularly important when new code or features are included in production applications and new error or debug codes are seen. This makes it easier for administers to identify if a new code path or an abnormal situation has occurred.
We are particularly excited with the journey we have begun with our new add-on called Service Desk Extension. This add-on works on top of Log Analysis and provides analytics for incidents and service requests ingested from Service Desk Systems like IBM Control Desk, Remedy, and ServiceNow.
With our support for Apache Solr 5.1, multiple new statistical functions are now supported.
There is now an improved installation and integration experience with Logstash 1.4.2.
In addition to supporting IBM Big Insights Hadoop (3.x), Log Analysis now supports Cloudera Hadoop 5.3.x for long term data storage & search.
There are new Insight Packs that provide enhanced out of the box value for our customers. These Insight Packs allow administrators to configure data sources for various applications and provide support for saved searches, dashboards and analytics. These include IBM MQ Series, Microsoft SharePoint, Microsoft Exchange, Microsoft SQL Server, Microsoft Active Directory., Tivoli Storage Manager, IBM Systems Disk Storage 8000 , IBM AIX Errpt , IBM HTTP Server , HP LiveSite , HP TeamSite , Oracle Database, Oracle Siebel & VM Ware ESXi .
There are many more features and capabilities like support for newer version of Red Hat Linux 7.0 OS and browsers including Firefox 31 ESR and Chrome 42. If you are looking for more information, the IBM Operations Analytics – Log Analysis Knowledge Center is a great place to start with.
Here’s a brief video that explains some of the above features in more detail.
If you have any questions or comments, I’d like to hear from you.