Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Showing results for 
Search instead for 
Did you mean: 

Forward SAP GRC logs to external SIEM

Former Member
0 Kudos

I would like to know how to forward logs on from SAP Access Manager / Firefighter to an external SIEM for central incident management / monitoring?

We use a SIEM from a British Cyber Security company called Assuria Log Manager as they have a forensically sound log management architecture and I need to understand how to forward logs to them and whether SAP have any API's for this extraction of logs or whether you simply produce syslog ?

We would prefer to use an API in order to extract as much detailed information as possible and because Syslog is less secure.

We use an external SIEM as we're monitoring all the network devices, servers and applications in our estate and monitoring activity for PCI DSS as well as for our own ISO27001 security policies.

Is it possible to get an example of the log format?


1 REPLY 1

Former Member
0 Kudos

Hi David,

we have developed a generic SIEM Extractor for SAP Systems.

Our tool can also extract Firefighter Data from the logs.

Please contact me if you still need assistance.

Regards

Ralf