Documentation - Exabeam Site Collector
- Network Ports
- Install the Exabeam Site Collector
- Filtering Incoming Syslog Events in Exabeam Site Collector
- Filtering Outbound Logs in Exabeam Site Collector
- How to Direct Kafka Input to Exabeam Site Collector
- Supported Exabeam Site Collector Changes
- Troubleshoot the Exabeam Site Collector
- Capture Site Collector Diagnostics Using Exabeam Support Package
- Scenario 1: No logs are transmitted nor received
- Scenario 2: Kafka Google Cloud Storage (GCS) collectors have not appeared on Data Lake UI
- Scenario 3: If logs are not uploaded to GCS where logs are not on Data Lake
- Scenario 4: Unable to accept incoming syslog, active directory context, Splunk logs, or Incident Responder integrations
- Scenario 5: Unable to pull LDAP from SaaS
- Scenario 6: Cannot send after transport endpoint shutdown
- Scenario 8: Too many arguments in command /tools/config.parser.sh
- Other scenarios
- How to Migrate to New Exabeam SaaS Site Collector
- How to Uninstall Exabeam Site Collector
- Exabeam Site Collector Services
Exabeam Site Collector Services
For site collectors deployed before April 2020, you will need to replace it with the latest Exabeam release to get all the experience and functionality described in this publication. See Install the Exabeam Site Collector for installation instructions. See "How to Migrate to New Exabeam SaaS Site Collector" in Troubleshoot the Exabeam Site Collector for migration instructions.
If your site collectors were deployed before April 2020 and you do not want to replace it with Exabeam's latest SaaS Site Collector, the following services that should be running without error on the SC server:
kafka- stores the logs on SCzookeeper- manages Kafkalogstash- Syslog on SCexabeam-kafka-gcs1-log-manager- Manager of kafka-to-gcs collector for lms.kafka.topicexabeam-kafka-gcs1-collector- Kafka-to-gcs collector for lms.kafka.topicexabeam-kafka-gcs2-log-manager- Manager of kafka-to-gcs collector for lms.kafka.format.topicexabeam-kafka-gcs2-collector- Kafka-to-gcs collector for lms.kafka.format.topicexabeam-rsc-forwarder- Forwards all the management requests from management collectors that are located on SC server or another servers that connects to LMS through SCopenvpn@client- OpenVPN service