Value for Log Analytics to Accelerate with Oracle Management Cloud

guest post by Philip Brown, Director of Cloud Strategy @ Red Stack Tech,

Oracle Management Cloud is Oracle’s latest innovation in a unique on-premises and cloud suite of monitoring, management and analysis services that meets the individual needs of each business. This integrated suite enables you to improve IT stability, prevent application outages, increase DevOps agility, and harden security across your entire application and infrastructure portfolio. To learn more about Management Cloud, Click here,

In this blog post, Philip will discuss how Oracle Management Cloud can offer log analytics with very fast times for value, allowing you to visually access and understand log data from your infrastructure and software stack. can.

Free Oracle Management Cloud eBook

IT, we are our own worst enemy. I am a technical person by background and I work with and watch applied technology all the time. The challenge for technical people is that there are always two ways of doing things and one is more appealing than the other.

A perfect example of this is database backup. When I started with Oracle it was the norm to write shell scripts that would enable database backup. As time went on the tools created by Oracle to enable and manage backups fell away a lot with the script requirements. But those scripts kept on being written. As I progressed my career in IT and worked with more and more clients, I found more and more detailed backup scripts written in all the strange and wonderful languages. Not long ago I shifted my focus to the ‘build before build’ principle. It’s an architecture principle that states that if you can buy/use something off the shelf you should do so before building your own.

The problem lies in the fact that IT people are technical in nature, why buy something off the shelf when you write your own. The problem is of the interest of the technical people themselves; This is a technical problem that needs to be solved. But the problem is that you are now trying to solve two problems. One is writing a backup script that can be used in different versions of Oracle in your assets and have a robust backup of two. The key here is that the business doesn’t care about the former, they only want the latter. They want strong backup and they want it to be achieved as soon as possible. Sadly, writing four pages of Perl scripts to do something that Oracle made a tool about 15 years ago is not the way to add value.

So how does this relate to Log Analytics and Oracle Management Cloud?

Log analytics has been around for a while and there are a lot of tools in the market that can provide this. A very common open source log analytics solution is ELK Stack. ELK is Elasticsearch, Logstash and Kibana, which when put together can provide you with a log analytics solution. While it’s a perfectly acceptable solution for me to build a log analytics tool, it’s still a solution built by tech people for technical people.

To me, the value you can bring to an organization is not that you know how to glue and setup the various bits of the ELK stack together, but rather the fact that you can enable the log analytics service. are. that is the value; to be able to find, find and explain The information in the hundreds and millions of log files being generated in your infrastructure.

Oracle Management Cloud improves the time to log analytics service in several ways. In terms of infrastructure there is nothing to set up other than a cloud agent and possibly a cloud gateway if you want to send your logs through a proxy before moving to the management cloud. This is the installation for the Cloud Agent. A script (already written for you ;-)) and just a set of parameters that are documented.

./AgentInstall.sh AGENT_TYPE=cloud_agent AGENT_REGISTRATION_KEY=KJJD8ua8sd9asas90da0 AGENT_BASE_DIR=/u01/mgmtcloud TENANT_ID=redstack GATEWAY_HOST=redstack_proxy GATEWAY_PORT=3900 AGENT_PORT=3872

Secondly, this is the most important bit, it is the log parsers. For all log analytics tools you will need to use a log parser to get the maximum value from the log file. A log parser is a regular expression that will take a line of log information and effectively cut it into meaningful bits of information. So when you are using your log analytics tool you can get more value out of the log data itself. To build a log parser you need to be familiar with regular expressions and be able to use them against log data, which is a technical challenge in itself. However, along with Oracle Management Cloud Log Analytics Tool, it comes with 94 pre-configured log parsers. Remember this is only a starting point; More log parsers will inevitably be released, but 94 is not a bad starting point.

To illustrate this an example is looking at the log parser for the database audit XML log format. Each audit log record contains a large amount of valuable log data. However manually creating a log parser for this would be extremely complicated. In fact you can see how complicated it is in Oracle Management Cloud Console. This is a parse expression.

Value for Log Analytics to Accelerate with Oracle Management Cloud

But as it’s done for you, you can now see which columns individual logs are divided into and which are individually searchable through log analytics tools. This is just a screenshot from the Log Parser example.

Value for Log Analytics to Accelerate with Oracle Management Cloud

Within the log analytics tool you can drag and drop all the fields generated through the log parser. Here we can discover the various privileges that have been occupied; In this case we see SYSDBA! To clarify what has been done, Log Parser’s Regular Expression has enabled the Log Analytics tool to find and classify data on the privilege fields observed in each audit record.

Value for Log Analytics to Accelerate with Oracle Management Cloud

So what I wanted to describe in this post, one of the reasons I love Oracle Management Cloud Log Analytics is that it’s value is very quick. The infrastructure is ready for you, the log parsers are ready, all you have to do is deploy the agent. The challenge shouldn’t be in the deployment tool, the value shouldn’t be that you managed to do it. The challenge is how do you improve IT operations and services. The value you bring is being able to use and understand Log data from your infrastructure and software stack that is being presented visually through the Oracle Management Cloud.

To learn more about Oracle Management Cloud Click here either book a call with one of our consultants.

Author’s bio:

Philip Brown has been with Red Stack Tech for more than five years, most notably in his role as Business Services Manager and most recently became Director of Cloud Strategy. As an active member of the Oracle community, Philip was awarded an Oracle Ace Associate in 2015. Presented in the Oracle User Group since 2008 and having several articles published in Oracle Scene and OTech magazines, Philip had knowledge and professional experience in using cloud technology. Highly valued among other professionals.

Leave a Comment