Windows event log monitoring

Support forum for Nagios Core, Nagios Plugins, NCPA, NRPE, NSCA, NDOUtils and more. Engage with the community of users including those using the open source solutions.
Locked
bosco
Posts: 40
Joined: Thu Nov 24, 2016 5:34 am

Windows event log monitoring

Post by bosco »

HI can you please share me how to monitor windows event log using nagios.

i need to filter using

event type = application

Source="XLFileMover"
User avatar
mcapra
Posts: 3739
Joined: Thu May 05, 2016 3:54 pm

Re: Windows event log monitoring

Post by mcapra »

Check out this article by community member @WillemDH:
https://outsideit.net/real-time-eventlog-monitoring/

This uses a "push" method with NSCA or NRDP and lets NSClient++ be responsible for the active checking of Windows event logs.

You can also leverage a "pull" method with check_wmi_plus which uses WMI:
http://www.edcint.co.nz/checkwmiplus/?q ... mmandlines

You might also consider Nagios Log Server since it is a much more appropriate application for large-scale event log monitoring (it's free up to 500MB/day):
https://www.nagios.com/products/nagios-log-server/
Former Nagios employee
https://www.mcapra.com/
tmcdonald
Posts: 9117
Joined: Mon Sep 23, 2013 8:40 am

Re: Windows event log monitoring

Post by tmcdonald »

Thanks for the assist, @mcapra!
Former Nagios employee
Locked