Unified Logs Overview

The Simple Observability agent automatically discovers and forwards logs from various system and application sources, providing a centralized view of your infrastructure’s health and activity.

Logs are processed to extract structured metadata, ensuring that timestamps, levels, and source information are consistently indexed and searchable.

Supported Collectors

Explore the documentation for each supported log source to understand how they work and how to configure them.

Systemd Journal

Collects logs directly from systemd-journal, providing visibility into system services, daemons, and kernel messages. Access is typically handled via system-wide capabilities.

Windows Event Log

Monitors the Windows event log system, specifically the Security channel, to provide visibility into authentication and system security events.

Nginx Access Logs

Tails and parses Nginx access logs to provide insights into web traffic, including status codes, request paths, and client metadata.

Apache Access Logs

Monitors Apache access logs using the Common Log Format or Combined Log Format, ensuring web server performance and errors are tracked in real-time.