Home » Release News » Authority on Demand Release News

Authority on Demand Release News

Triple Syslog Definitions

Raz‐Lee’s iSecurity™ products now support sending Syslog messages to up to three (3)
SIEM products simultaneously:

  • In AOD Main Menu, select option 81.
    The SYSLOG message is now enabled for multiple SIEM messages (note the SIEM 1, SIEM 2 and SIEM 3 option items) and message structures using built‐in as well as mixed variables and constants.
  • The feature enables adjustable Port, Severity, Facility and Length while offering Syslog Types: UDP, TCP and TLS (encrypted) support in CEF and LEEF and user editable modes, using filters for relevant fields.
  •  Processing of SIEM is done on a separate job per SIEM.
    A buffer exists to allow intermediate communication problems, or SIEM downtime.
  • Once this buffer is full, the processing is delayed.
    A message is then sent to QSYSOPR, and an attempt is reconstructed while communication is made periodically and consistently.

In option 5, new notification message was added to alert customers if the user profile
to add as a provider does not exist in the system.

To view this new message, type: STRAOD>5>F6 and try to add a user named QUQU. The message should pop‐up.

  • In STRAOD>11>31, activate SBMJOB handling for 1=Add:
    • This option is relevant for AOD where the rule uses 1=Add authority.
      Once selected, it enables the user to submit jobs which will carry an elevated authority, regardless of the state of the submitting Authority on Demand™ (AOD) sessions.
      This unique capability is subject to retaining the value USER(*CURRENT) in the submitted job.
    • Special consideration must be taken when activating the SBMJOB command with F4=Prompt:
      If the user practices F4=Prompt for the command Submit job (SBMJOB) the parameter Command (CMD) is not displayed and cannot be changed.
      To bypass this issue, use the command AODSBMJOB instead. This command allows changes to the parameter (CMD), including the usage of F4.
  • In STRAOD>82>11, use AODSBMJOB instead of SBMJOB:
    • This is a replacement for the SBMJOB command.
      Using the command GETAOD, the user can add an authority session.
      It enables regular usage of for the Command (CMD) parameter.
  • In the Display History screen, found in option 41, there are numerous new selections available (from 1-9), including filtering according to Cmd line,*CSV, Cmds, Audit, STRSQL, Screens, DB and AtEnd.
  • When running Display definition STRxx>82>5, and selecting *ALL, a single spool file is produced instead of several.
  • A new BASE support menu has been added to all products.
    Many of the options from the Maintenance Menu were moved to the BASE Support Menu.
    The email options from the Configuration Menu have also been moved to the BASE Support Menu.
    To make use of this new feature, the BASE product (SMZ4) MUST be installed first.
    To access the BASE Support Menu, select 89 – Base Support from the product Main Menu.