Changing log message settings

Configure log messages to meet PCI DSS requirements.

To change the log message settings, you must complete the following steps:

  1. In the user interface, click the Cluster tab.
  2. Select System monitoring > Event log messages from the navigation menu.
    Figure 1. Event Log Message settings
    This image is explained in the surrounding text.
  3. Click a log row, for example 9, to adjust the settings. Repeat for each log message individually.
    Figure 2. Event log message 9
    The image shoes the General Settings section. PCI DSS mandated is set to Disabled. Comment is set to Insufficient memory for required action. Level is set to error). In the Active in section, the System log, Operation system log, and Console checkboxes are selected. The Audit log checkbox is cleared.
  4. Make your changes and click the Save (Save) icon.
Note: Your central log server must collect all relevant log messages from the system log. You must implement an operational process within your organization to collect the relevant logs from the operating systems logs.

For PCI DSS compliance, a minimum set of log messages must be forwarded to centralized logging. To do so, the Operating system log checkbox must be selected for each message. The following log messages are mandatory for PCI DSS compliance:

14, 15, 16, 17, 38, 41, 70, 71, 90, 91, 92, 93, 100, 129, 131, 157, 194, 195, 196, 197, 198, 199, 200, 201, 209, 210, 211, 212, 213, 229, 251, 322, 324, 325, 364, 365, 366, 367, 370, 371, 372, 373, 374, 375, 376, 377, 378, 379, 380, 381, 382, 383, 384, 385, 386, 387, 388, 389, 390, 391, 392, 393, 394, 395, 396, 397, 398, 399, 400, 401, 402, 403, 404, 405, 406, 407, 408, 409, 410, 411, 412, 413, 414, 415, 417, 418, 419, 420, 425, 426, 427, 428, 429, 430, 434, 435, 436, 437, 448, 449, 456, 457, 460, 461, 462, 463, 468, 471, 490, 508, 509, 510, 511, 517, 518, 519, 520, 523, 524, 530, 531, 535, 536, 537, 541, 542, 543, 565, 573, 575, 577, 578, 580, 581, 585, 586, 587, 591, 594, 595, 598, 599, 819, 834, 852, 853, 854, 855

These log messages are by default set to the correct values after the initial installation of IBM® Safer Payments. To enable more log messages for centralized logging, select the Operating system log checkbox for each corresponding message.

Note: If you disable these log messages, you are not PCI DSS compliant.