Changing log message settings

Configure log messages to meet PA DSS requirements.

To change the log message settings, you must complete the following steps:

  1. In the user interface, click the Cluster tab.
  2. Select System monitoring > Event log messages from the navigation menu.
    Figure 1. Event Log Message settings
    This image is explained in the surrounding text.
  3. Click a log row, for example 9, to adjust the settings. Repeat for each log message individually.
    Figure 2. Event log message 9
    This image is explained in the surrounding text.
  4. Make your changes and click the Save (Save) icon.
Note: Your central log server must collect all relevant log messages from the system log. You must implement an operational process within your organization to collect the relevant logs from the operating systems logs.

For PCI DSS compliance, a minimum set of log messages must be forwarded to centralized logging. To do so, the Operating system log checkbox must be selected for each message. The following log messages are mandatory for PCI DSS compliance:

14, 15, 16, 17, 38, 41, 70, 71, 90, 91, 92, 93, 100, 129, 131, 157, 194, 195, 196, 197, 198, 199, 200, 201, 209, 210, 211, 212, 213, 229, 251, 322, 324, 325, 364, 365, 366, 367, 370, 371, 372, 373, 374, 375, 376, 377, 378, 379, 380, 381, 382, 383, 384, 385, 386, 387, 388, 389, 390, 391, 392, 393, 394, 395, 396, 397, 398, 399, 400, 401, 402, 403, 404, 405, 406, 407, 408, 409, 410, 411, 412, 413, 414, 415, 417, 418, 419, 420, 425, 426, 427, 428, 429, 430, 434, 435, 436, 437, 448, 449, 456, 457, 460, 461, 462, 463, 468, 471, 490, 508, 509, 510, 511, 517, 518, 519, 520, 523, 524, 530, 531, 535, 536, 537, 541, 542, 543, 565, 573, 575, 577, 578, 580, 581, 585, 586, 587, 591, 594, 595, 598, 599, 819, 834

These log messages are by default set to the correct values after the initial installation of IBM® Safer Payments. To enable more log messages for centralized logging, select the Operating system log checkbox for each corresponding message.

Note: If you disable these log messages, your are not PCI DSS compliant.