Customizing Fortify Software Security Center Logging

To customize logging for a Fortify Software Security Center instance, you can provision a custom log4j2 configuration file to override or add to the standard log4j2 configuration file in <fortify.home>/<app_context>/conf.

To provision the custom Log4j2 configuration override file, set the COM_FORTIFY_SSC_LOG4j2_OVERRIDE system environment variable or the com.fortify.ssc.log4j2.override JVM system property to an absolute path for the custom Log4j2 XML configuration file.

Fortify strongly recommends that you use one of these methods rather than modifying the <fortify.home>/<app_context>/conf/log4j2.xml file directly because it provides you with better control.