Hi All,
Hope you are doing well !!!!
I am using Nagios Core 4.4.5 and NSClient++ to monitor my windows hosts.
Can we monitor windows event logs using NSClient++ using check_nt plugin or any other way to do so?
Thanks in advance !!!
Regards,
Diwakar Sharma
Windows Event Logs monitoring
-
s.diwakar1
- Posts: 44
- Joined: Thu Feb 27, 2020 9:45 am
Windows Event Logs monitoring
Thanks & Regards,
Diwakar Sharma
Diwakar Sharma
-
benjaminsmith
- Posts: 5324
- Joined: Wed Aug 22, 2018 4:39 pm
- Location: saint paul
Re: Windows Event Logs monitoring
HI Diwaka,
Doing well! Thank you.
The CheckEventLog filter is for checking the event log and can be used with check_nrpe as well.
There's a couple forum posts avaialb with specific examples that should help get your started.
Windows EventLog with NSClient
Monitoring Windows Event Logs
Let us know if you get it working.
Alternatively, our NCPA agent has Event Log monitoring built into the API.
https://www.nagios.org/ncpa/help.php#api-modules
Doing well! Thank you.
The CheckEventLog filter is for checking the event log and can be used with check_nrpe as well.
There's a couple forum posts avaialb with specific examples that should help get your started.
Windows EventLog with NSClient
Monitoring Windows Event Logs
Let us know if you get it working.
Alternatively, our NCPA agent has Event Log monitoring built into the API.
https://www.nagios.org/ncpa/help.php#api-modules
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Be sure to check out our Knowledgebase for helpful articles and solutions!
Be sure to check out our Knowledgebase for helpful articles and solutions!
-
s.diwakar1
- Posts: 44
- Joined: Thu Feb 27, 2020 9:45 am
Re: Windows Event Logs monitoring
Hi Benjamin,
Thanks for your reply.
I am trying to monitor windows event log using WMI. I tried below script:
https://exchange.nagios.org/directory/P ... MI/details
Command: /usr/local/nagios/libexec/check_wmi_eventid.sh -H ********* -u ****** -p ******* -l application -w 2 -c 3 -t1 -m60
Output: Select EventCode,EventIdentifier,EventType,SourceName from Win32_NTLogEvent where ( Logfile = "application" ) and ( EventType = "1" ) and TimeGenerated > "20210517093314.000000-000"
WMIC ERROR : /usr/local/nagios/libexec/check_wmi_eventid.sh: line 323: /bin/wmic: No such file or directory
Can you please help?
Thanks in advance!!!
Regards,
Diwakar
Thanks for your reply.
I am trying to monitor windows event log using WMI. I tried below script:
https://exchange.nagios.org/directory/P ... MI/details
Command: /usr/local/nagios/libexec/check_wmi_eventid.sh -H ********* -u ****** -p ******* -l application -w 2 -c 3 -t1 -m60
Output: Select EventCode,EventIdentifier,EventType,SourceName from Win32_NTLogEvent where ( Logfile = "application" ) and ( EventType = "1" ) and TimeGenerated > "20210517093314.000000-000"
WMIC ERROR : /usr/local/nagios/libexec/check_wmi_eventid.sh: line 323: /bin/wmic: No such file or directory
Can you please help?
Thanks in advance!!!
Regards,
Diwakar
Thanks & Regards,
Diwakar Sharma
Diwakar Sharma
Re: Windows Event Logs monitoring
Hi Diwakar,
I use check_logfiles_health for all kind of Windows Eventogs from Consol Labs. Try this, explanation at https://labs.consol.de/de/nagios/check_logfiles/.
Regards
Paul
I use check_logfiles_health for all kind of Windows Eventogs from Consol Labs. Try this, explanation at https://labs.consol.de/de/nagios/check_logfiles/.
Regards
Paul