HomeEE · Operations › Log management

Log management

Purpose: Aggregate, retain and exploit AEM logs across a fleet — beyond tailing error.log on one box.

Who this page is for

AudienceWhy it matters to you
Platform engineersPipeline owners
All engineersSearch-fluency for debugging

What ships to the aggregation platform

LogContainsNotes
error.logThe main application logTHE stream; per-package routing configured (logging)
access.logInstance-level requestsPublish traffic truth (behind dispatcher misses)
request.logRequest durationsRender-latency source of record
Custom app logs (phi.log)Your packagesStructured where possible
Dispatcher/httpd logsEdge-of-origin pictureCache HIT/MISS enrichment is gold: log %{Cache-Status}
audit-style eventsLogin failures, user adminSecurity consumption (audit & compliance)

Ship with instance identity (host, tier, environment) attached; without labels a fleet's logs are noise.

Retention & access

Hot/searchable 30 days, archived 1 year (or per compliance — audit retention decisions apply); production log access is itself audited (logs contain user behaviour); PII must not be there in the first place (logging rules) — scrubbing at the shipper is the backstop, not the plan.

Making logs earn their storage

Quick navigation