After you install the content pack for Linux, configure an agent group to apply common settings to the agents on the appliances in the region.

Procedure

  1. Log in to the vRealize Log Insight user interface.
    1. Open a Web browser and go to https://sfo01vrli01.sfo01.rainpole.local.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      admin

      Password

      vrli_admin_password

  2. Click the configuration drop-down menu icon and select Administration.
  3. Under Management, click Agents.
  4. From the drop-down at the top, select Linux from the Available Templates section.
  5. Click Copy Template
  6. In the Copy Agent Group dialog box, enter VA - Linux Agent Group in the Name text box and click Copy
  7. In the agent filter fields, use the following selections.

    Press Enter to separate the host name values.

    Filter

    Operator

    Values

    Hostname

    matches

    • vrops01svr01a.rainpole.local

    • vrops01svr01b.rainpole.local

    • vrops01svr01c.rainpole.local

    • sfo01vropsc01a.sfo01.rainpole.local

    • sfo01vropsc01b.sfo01.rainpole.local

    • vra01svr01a.rainpole.local

    • vra01svr01b.rainpole.local

    • vrb01svr01.rainpole.local

    • sfo01vrbc01.sfo01.rainpole.local

  8. Click Refresh and verify that all the agents listed in the filter appear in the Agents list.
  9. Click Save New Group at the bottom of the page.
  10. Verify that log data is showing up on the Linux dashboards.
    1. On the main navigation bar, click Dashboards.
    2. Expand Linux and click Security - Overview.

      You see events that have occurred over the past 48 hours.