Hello there.
I don't know much, a part from very basics - non hands on, of SCOM.
Can SCOM be used for Log Aggregation use case? Imagine multiple Windows Servers sending and centralizing each log for SCOM, and network/security devices like switches and firewalls sending logs (syslogs). Can this, somehow, work like log aggregation similar to a SIEM? Would be friendly to centralize logs from non Windows devices from syslog? or only SNMP would be allowed for perf. monitoring for non Windows devices?