LogRhythm Advanced Agent

LogRhythm's Advanced Agent Technology enables customers to take advantage of several unique and powerful features that supplement traditional logging capabilities, such as encryption and file integrity monitoring. Benefits range from improved security and secure remote collection to compliance assurance for a variety of regulations. LogRhythm solutions can be configured to operate with or without the use of agents.

System Monitor

Available on Windows, Linux, Solaris, HP-UX and AIX, individual System Monitor Agents are capable of collecting from hundreds of devices and deliver:

  • Centralized Management
  • SSL Encrypted Communication
  • Guaranteed Collection
  • 10:1 Data Compression for Transportation
  • Remote Data Aggregation
  • Time Stamp Normalization
  • Scheduled Collection
  • TCP Forwarding
  • Host Activity Monitoring
    • Independent Process Monitor
    • Network Connection Monitor
    • User Activity Monitor
    • Data Loss Defender*

System Monitor Pro

In addition to functionality available with LogRhythm's System Monitor agents, the following advanced features are available with the System Monitor Pro:

  • High Volume Remote Collection
    • Database Logs
    • Cisco IDS – SDEE format
    • Checkpoint – OPSEC LEA
    • Flow Data
    • SNMP
    • Vulnerability Data
  • File Integrity Monitoring
    • Detect reads, modifications and deletions
    • Identify specific user or application
  • Unidirectional Communication for Classified Environments
    • Integration with one-way Data Diodes
    • Support for classified/top secret deployments