Storing and reviewing logs is the foundation of many compliance mandates and an increasing number of best practice security policies. Being able to cost-effectively store logs and respond to what may appear to be arbitrary requests for user access logs from years ago may be part of a quarterly internal audit.
Graylog has built a log management system from the ground up for fast, interactive log analysis that allows you to affordably store logs from all of your servers, applications, network devices, and applications. Simple searches or automated reports that serve as the foundation for an attestation can simplify getting through the routine audit processes.
Automatically archive the data that you do not search through very often. Store this data on more cost-effective, slower hard disks and make it available for search in Graylog only when you need it.
Graylog Enterprise also offers Audit Log capabilities. Audit Log records and stores actions taken by a user or administrator that make changes in your Graylog system.