DATASHEET Tripwire LogCenter Data Collection Capabilities August 2021

Turning log data into Tripwire® LogCenter® supports a variety of data collection methods, including information requires agent-based collection using the Tripwire Axon® agent, and agentless collection support for the via syslog, SNMP, WMI, file collectors and remote connectors for Cisco, Check platforms that matter Point and databases. The Tripwire Axon agent available with Tripwire LogCenter supports the following platforms:

» CentOS 5.3–5.11+ (32- and 64-bit) » CentOS Linux 6.0–6.5+ (32- and 64-bit) » CentOS Linux 7.0–7.3 (64-bit) » Linux 8.5–8.10 (32- 64-bit) » UEK 7.2–7.5 (64-bit) » 5.3–5.11+ (32- and 64-bit) » Red Hat Enterprise Linux 6.0–6.6 (32- and 64-bit) » Red Hat Enterprise Linux 7.0–7.4 (64-bit) » SUSE Linux 11.4, 12.0–12.3 (64-bit) » Linux 14.04.4 LTS and above (32- and 64-bit) » Ubuntu Linux 16.04 LTS and above (32- and 64-bit) » 7 (32- and 64-bit) » Microsoft Windows 8, 8.1, 8.1 Embedded (32- and 64-bit) » Microsoft Windows 10 (64-bit) » Microsoft Windows Embedded POSReady 7 (32- and 64-bit) » Microsoft Windows 2008 SP1, SP2 (32- and 64-bit) » Microsoft Windows Server 2008 R2 (64-bit) » Microsoft Windows Server 2012 (64-bit) » Microsoft Windows Server 2012 R2 (64-bit) » Microsoft Windows Server 2016 R2 (64-bit)

Data collection is only part of the equation. Tripwire LogCenter normalizes the log data it collects in order to make it accessible and useful with its product capabilities of indexing, search and correlation. Tripwire LogCenter supports normalization rules for products in the following table, and Tripwire is constantly expanding the set of platforms for which support is available.

FOUNDATIONAL CONTROLS FOR SECURITY, COMPLIANCE & IT OPERATIONS Vendor Product Vendor Product A10 Networks, Inc. A10 Networks Cisco Systems Cisco Secure IDS Adiscon EventReporter Cisco Systems Cisco IMC Adtran, Inc Adtran NetVanta Cisco Systems Cisco IOS AIDE AIDE Cisco Systems Cisco ISE Alcatel Alcatel AOS Cisco Systems Cisco Ironport (ESA/WSA) Alcatel Alcatel Wifi Cisco Systems Cisco PIX® Security Appliance Alcatel-Lucent OmniAccess ESR Compact and Modular Routers Cisco Systems Cisco VPN Series Concentrator Anixter Bosch IP Camera Cisco Systems Cisco Wireless LAN Controller (WLC) Apache Software Foundation Apache HTTP Server Cisco Systems Linksys VPN Apache Software Foundation Apache James Server Cisco Systems Cisco NX-OS Apache Software Foundation Apache log4j Citrix Netscaler APC NetBotz Clavister AB Clavister APC PDU Cloudflare Enterprise Log Share Apple Mac OS Computer Associates SiteMinder Policy Server Arbiter Systems Arbiter GPS Satellite Clock Cordys Cordys Arbor Networks Arbor Networks Courier POP3 Courier POP3 Arbor Networks Arbor Peakflow Cybectec SMP 16 Gateway Array Networks Array Networks CyberArk Enterprise Password Vault Aruba Networks Aruba Wireless CyberArk Privileged Identity Management Aruba Networks ArubaOS CyberArk Privileged Identity Management (CEF Events) Aruba Networks ClearPass Access Management CyberGuard CyberGuard Astaro ASG 320 Security Gateway Debian GNU/Linux Debian AudioCodes Limited Mediant Dell Defender () Secure Router Dell Dell EMC Axis Communications Axis Dell Dell EMC VNXe-Unity BalaBit IT Security Syslog-ng Agent for Windows Dell Dell Equallogic Barracuda Load Balancer Dell Dell iDRAC6 Barracuda Networks Barracuda Message Archiver Dell Dell iDRAC7 Barracuda Networks Barracuda NG Dell Dell Networking OS Barracuda Networks Barracuda Web Filter Dell Dell PowerConnect Barracuda Networks Barracuda Web Security Gateway Digi Digi Passport BeyondTrust Bomgar PRA Digi PortServer Blue Coat Systems Blue Coat ProxyAV DigitalPersona, Inc. Digital Persona Blue Coat Systems Blue Coat ProxySG DLink DLink BMC Software Discovery Docker Docker BMC Software TrueSight Operations Management Duo Authentication Proxy Bro.org Bro Eaton Cooper Yukon IED Manager Suite (IMS) Brocade Switch EMC EMC Recoverpoint Brocade Wireless LAN Controller Enterasys Networks Dragon EMS Cambium Networks PTP Series Enterasys Networks Dragon HIDS CentOS CentOS Enterasys Networks Enterasys Check Point Check Point ESRI ArcGIS Check Point GAiA Extreme XOS Check Point Check Point SmartDefense Extreme Networks ExtremeWare Check Point Check Point SmartCenter F5 Networks F5 BIG-IP Cisco Systems Cisco ASA (Adaptive Security Appliance) F5 Networks F5 Firepass Cisco Systems Cisco CallManager FileMaker FileMaker Server Cisco Systems Cisco CatOS FileZilla FileZilla Server Cisco Systems Cisco IOS FireEye Endpoint Security Cisco Systems Cisco IPS FireEye Web MPS Cisco Systems Cisco Mobility Services Engine (MSE) FNS Bancs FNS Bancs Cisco Systems Cisco Secure Access Control Server (ACS) Forescout CounterACT Cisco Systems Cisco Security Agent (CSA) Forescout Forescout Cisco Systems Cisco Prime Network Control (NCS) ForgeRock openAM Cisco Systems Cisco Prime Infrastructure FortiAnalyzer Cisco Systems Cisco Security Manager Fortinet FortiAuthenticator Cisco Systems Firepower NGIPS Fortinet FortiGate Cisco Systems Firepower Management Center Fortinet FortiGate v4.0 MR2 Cisco Systems Cisco FWSM (Firewall Service Module) Fortinet FortiGate v4.0 MR3 Vendor Product Vendor Product Fortinet FortiGate v5.0 Mageia Fortinet FortiOS ManageEngine Password Manager Pro Fortinet FortiWifi Mandriva S.A. Mandriva Fortinet FortiWeb Marconi Marconi Foundry ServerIron McAfee McAfee Alert Manager FreeBSD Foundation FreeBSD McAfee McAfee DAM GarrettCom INOS McAfee McAfee ePolicy Orchestrator (ePO) GarrettCom MNS-6K-SECURE McAfee McAfee IntruShield GarrettCom MNS-DX McAfee McAfee NSM Gauntlet Gauntlet Modem McAfee McAfee VirusScan GE iFix McAfee McAfee Web Gateway Gentoo McAfee Sidewinder GitHub GitHub McAfee Firewall Enterprise GlobalSCAPE GlobalScape Meinberg LANTIME Guardix Guardix MICROS Systems, Inc. Micros Opera Hewlett-Packard Company (HP) HP 3PAR Microsoft BIZTalk Hirschmann Industrial Rail Switch Power Lite Microsoft IIS Advanced Logging Module; IIS - Web/FTP Hirschmann Industrial Ethernet Switches Microsoft Microsoft Cloud App Security Hirschmann Industrial Firewall Microsoft Microsoft DHCP Server Hirschmann Industrial HiVision Microsoft Microsoft Exchange Server HP HP Comware Microsoft Microsoft Forefront Threat Management Gateway HP HP EVA Microsoft Microsoft Internet Authentication Service (IAS) HP HP GbE2c Ethernet Blade Switch Microsoft Microsoft ISA Server HP HP iLO Microsoft Microsoft Operations Manager (MOM) HP HP OpenVMS Microsoft Microsoft Proxy Logs HP HP ProCurve Microsoft Microsoft SQL Server HP HP SAN Switch Microsoft Microsoft SQL Server (CEF Events) HP HP-UX Microsoft Microsoft Sysmon HP HP Onboard Administrator Microsoft Network Policy Server (NPS) HP HP TippingPoint Microsoft Windows HP HP Virtual Connect Microsoft Windows XP-2003 HyTrust, Inc. HyTrust Security Appliance Microsoft Windows 2008, 2008 R2, 2012, Vista, 7, 8, 2016 IBM AIX Microsoft Windows 10, 2019 IBM AS/400 Microsoft Windows LTR IBM IBM WebSphere Microsoft Windows 2003 Firewall IBM Informix Dynamic Server Microsoft Windows 2008 R2 Firewall IBM Corporation ServeRaid Motorola Motorola AirDefense IBM Internet Security Systems (ISS) ISS Motorola RFS IBM Internet Security Systems (ISS) NetworkIce MOXA NPort IBM Lotus Development Corporation IBM Lotus Notes MySQL AB MySQL Linux Imperva SecureSphere WAF MySQL AB MySQL Windows Industrial Defender Network Intrusion Detection System (NIDS) NetApp NetApp ONTAP Infoblox Inc. Infoblox NIOS NetApp NetApp Virtual Tape Library Informatica Informatica PowerCenter NetBSD NetBSD Ingrian Networks IngrianNAE Netopia Netopia Inter7 Vpopmail Newnet Communication Tech AccessGuard Internet Systems Consortium, Inc. Bind Linux Nginx Nginx Internet Systems Consortium, Inc. Bind Windows Niksun Niksun Ipswitch WS_FTP Server Nitgen Access Manager JetBrains TeamCity Node.js Node.js JFrog Artifactory Nokia Nokia IPSO Juniper Networks MAG Series Nortel Networks Nortel Connectivity Juniper Networks Juniper Netscreen Nortel Networks Nortel Passport Juniper Networks Juniper SSG-WLAN Nortel Networks Nortel Switch Juniper Networks Juniper SSL VPN NovaTech OrionLX Juniper Networks Junos OS Nozomi Networks N2OS Juniper Networks/Pulse Secure Juniper - Pulse Secure SSL VPN Appliances Nutanix Acropolis (AOS) KEMP Technologies LoadMaster One Identity TPAM LogMeIn LogMeIn Central Open Source Kippo Vendor Product Vendor Product Open Source gIFTPd SEL SEL-2488 Open Source Imapd SEL SEL-3610 Open Source IPFilter SEL SEL-3620 Open Source Sendmail Sendmail Open Source ModSecurity ServGate Edgeforce ServGate Open Source Nagios Shorewall Open Source NcFTPd Siemens RUGGEDCOM CROSSBOW Open Source NTP Sierra Wireless ALEOS Open Source OpenSSH Linux Slackware Open Source Postfix Snare Snare AIX Open Source Pure-FTPd Snare Snare Apache Open Source QMail Snare Snare CentOS Open Source Cache Snare Snare IIS Open Source TACACS+ Snare Snare Linux Open Source vsftpd Snare Snare Windows OpenBSD OpenBSD Software AG WebMethods Integration Server Oracle Oracle SolarWinds NetFlow Oracle Oracle Access Manager SonicWall SonicWall Oracle Oracle Database SonicWall SonicWall Aventail E-Class SRA Oracle Oracle DB Collector Sophos Sophos Antivirus Oracle Oracle Linux Sophos Sophos Enterprise Console Oracle Oracle Web Cache Sophos Sophos Enterprise Console (CEF Events) Oracle Oracle WebLogic Server Sophos SG Series UTM Oracle Siebel Sophos XG Firewall OSI Monarch Clam Antivirus PacketMotion PacketSentry Sourcefire Snort PADS Pads Sourcefire Sourcefire Palo Alto Networks Palo Alto PAN-OS SSH SSH Tectia Server Panasonic Avionics Corporation Panasonic Avionics AI Stonesoft Stonegate Firewall Pentaho Pentaho Sun Microsystems Solaris Perle IOLAN Sun Microsystems Sun ONE Web Server (iPlanet) Phion Firewall Phion Netfence SUSE SUSE Linux PostgreSQL PostgreSQL SUSE SUSE Linux Enterprise Server Progress Software Sonic ESB SWIFT SWIFT Alliance Access ProofPoint ProofPoint Symantec Symantec QBIK WinGate Symantec Symantec AntiVirus QNAP QTS Symantec Symantec Endpoint Protection Manager Quest Software Quest Active Roles Symantec Symantec Endpoint Protection Client Radware Radware Tofino Xenon Security Applience Radware Radware Alteon Tofino Configurator Raritan Dominion SX48 Top Layer Networks TopLayer Red Hat Red Hat Ansible Tower Townsend Security Patrick Townsend LogAgent Red Hat Red Hat Enterprise Linux Transition Networks Indura Red Hat Red Hat Fedora Core Linux Transition Networks SM24TAT4XA Riverbed Riverbed Third Brigade RSA DLP Trend Micro TrendMicro, Deep Security Manager, OfficeScan RSA RSA SecurID Trend Micro TrendMicro OSSEC RuggedCom RuggedServer, RuggedSwitch Tripp Lite Tripp Lite B096-048 RuggedCom RuggedBackbone Tripwire IP360 Device Profiler (DP) Safend WAVE Data Protection Tripwire IP360 VnE SafeNet Networks SafeNet DataSecure Tripwire Tripwire Configuration Compliance Manager (CCM) SAP AG SAP Tripwire Tripwire Enterprise Schneider Electric ADAM Tripwire Tripwire Event Sender Schneider Electric EcoStruxure ADMS Tripwire Tripwire for Servers Schneider Electric Modicon PAC Tripwire Tripwire Industrial Appliance Schneider Electric OASyS DNA Tripwire Tripwire Industrial Sentinel Schneider Electric Remote Terminal Unit (RTU) Tripwire Tripwire Industrial Visibility Secui Secui MF2 Tripwire Tripwire LogCenter SEL SEL RTAC Trustwave Secure Web Gateway Vendor Product Vendor Product Ubuntu Ubuntu Linux Vyatta Network OS Vasco Vasco IDENTIKEY Server WatchGuard Watchguard Verifone Sapphire Wave Wave Data Protection Verifone Commander Site Controller Websense Triton Security Gateway Veritas Technologies Exec Westell Westell Veritas Technologies System Recovery Westermo RedFox Industrial Series (RFI) VMware Photon OS WU-FTPD Wu-ftpd VMware VMware ESX XYPRO XYPRO Safeguard PRO VMware VMware ESXi Net Services Zeroshell VMware VMware vCenter Server ZyXEL ZyXEL

Tripwire is the trusted leader for establishing a strong cybersecurity foundation. We protect the world’s leading organizations against the most damaging cyberattacks, keeping pace with rapidly changing tech complexities to defend against ever-evolving threats for more than 20 years. On-site and in the cloud, our diverse portfolio of solutions find, monitor and mitigate risks to organizations’ digital infrastructure—all without disrupting day-to-day operations or productivity. Think of us as the invisible line that keeps systems safe. Learn more at tripwire.com

The State of Security: News, trends and insights at tripwire.com/blog Connect with us on LinkedIn, Twitter and Facebook

©2021 Tripwire, Inc. Tripwire, LogCenter, IP360, Tripwire Axon and others are trademarks or registered trademarks of Tripwire, Inc. All other product and company names are property of their respective owners. All rights reserved. TLCDCC2108a 2108