> For the complete documentation index, see [llms.txt](https://docs.blusapphire.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.blusapphire.io/log-forwarding/03_log-forwarding-guide/log-forward/dell/dell-powervault-storage-me5024.md). # Dell PowerVault storage ME5024 Dell PowerVault storage (ME5024) Log Ingestion Guide *PowerVault Manager • SIEM Syslog Integration Guide* ## Overview This guide describes how to configure the Dell ME5024 PowerVault storage system to forward operational logs to a SIEM (Security Information and Event Management) platform via Syslog. Completing this integration provides real-time visibility into audit events, errors, alerts, and system health. {% hint style="info" %} Before you begin, ensure you have administrator access to PowerVault Manager and that BluSapphire’s Datastreamer server is reachable from the storage appliance. Note the Datastreamer server's IP address before proceeding. {% endhint %} ## Configuration Steps {% stepper %} {% step %} ### Log in to PowerVault Manager Open a web browser and navigate to your ME5024 management interface. Sign in with administrator credentials. {% endstep %} {% step %} ### Navigate to Syslog Settings From the top navigation menu, go to: **Settings → Notifications → Syslog** {% endstep %} {% step %} ### Add Your SIEM Syslog Server Enter the connection details for your SIEM platform: * **IP Address** — Enter the IP address of Datastreamer server. * **Port** — Enter the port shared by BluSapphire team. {% endstep %} {% step %} ### Apply and Enable Click Add to save the server entry, then click Enable to activate Syslog forwarding to your SIEM. {% endstep %} {% endstepper %} ## Forwarded Log Types Once enabled, the ME5024 will continuously forward the following log categories to your SIEM: * **Audit Logs** — Records of administrative actions, configuration changes, and user activity * **Error Logs** — Hardware and software error events requiring attention or investigation * **Alerts** — Threshold-based and proactive notifications from the storage subsystem * **System Health Logs** — Ongoing telemetry on drive status, enclosure health, and component state ## Connection Summary | Parameter | Value | | -------------------- | ----------------------------------- | | Device Model | Dell ME5024 (MES024) | | Management Interface | PowerVault Manager | | Log Destination | SIEM Syslog Server | | Syslog Port | To be shared by BluSapphire team | | Log Types | Audit, Error, Alerts, System Health | ## Verification After enabling Syslog forwarding, verify the integration is working by checking your SIEM platform for incoming events from the ME5024 IP address on port 12716. You should see events populating within a few minutes under normal operations. {% hint style="warning" %} If no logs appear in your SIEM after 10 minutes, verify network connectivity between the ME5024 and the Datastreamer. Confirm the IP address and port are correct in PowerVault Manager under **Settings → Notifications → Syslog**. {% endhint %} --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.blusapphire.io/log-forwarding/03_log-forwarding-guide/log-forward/dell/dell-powervault-storage-me5024.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.