System

The system settings in Logpresso Sonar are arranged in order of usage frequency. Immediately after installing Logpresso Sonar, you should first configure the Cluster, then define normalization models and the corresponding Logger Models and Parsers. Next, define object groups needed for policy configuration, and proceed to set up detection policies. This document is organized according to the menu order, so if you are setting up for the first time, start by reviewing the node settings.

Note

System settings are only available to accounts with administrator privileges and are disabled for user-level accounts.

Cluster: Configure Logpresso Cluster and storage lifecycle
Sentries: Register and manage Sentries, the log collection agents for the Logpresso platform
Performance Monitor: Monitor Logpresso server performance
Tables: Configure tables for storing collected logs and indexes
License: Register and manage Logpresso platform licenses and usage status
Mail Server: Configure the mail server for the Logpresso platform
Push Templates: Register and manage explanation templates used in the explanation process
Query Monitor: View running queries on the Logpresso platform
Audit Logs: View and search audit logs on the Logpresso platform
System Logs: View and search system logs on the Logpresso platform
Connect Profiles: Manage identification and authentication information required to connect to external databases, FTP, SFTP/SSH servers, etc.
Response Targets: Blocks attacker IP addresses through integrated network access control systems such as firewalls.
Certificates: Manage certificates for the Logpresso platform
Packages: Manage Logpresso Sentry installation packages
AI Prompts: Manage prompts required to run the AI assistant