I have a new installation of Log Server that I am just beginning to become familiar with.
I had a request come across my desk to day to see if can can alert on a particular Windows server log entry.
I installed NXLog on my first windows server and have logs flowing to the Log Server.
My question is this: Does the NXlog software only forward entries from the big three logs (Application/Security/System)? Or all within a certain directory?
I was asked to alert on event 276 from the 'Admin' Log under "Event Viewer / Applications and Services Logs / AD FS".
I've tried reading through some of the documentation and even looked through several pages on this forum but haven't anything that answers the above.
Any help would be very much appreciated.
Thanks
Adding additional Windows Log?
-
npolovenko
- Support Tech
- Posts: 3457
- Joined: Mon May 15, 2017 5:00 pm
Re: Adding additional Windows Log?
Hello, @ajwilliamson. I believe by nxlog pulls all event logs by default. Can you upload the nxlog.conf file so that I could review it? Please keep in mind that when you configure the nxlog only new events will be forwarded to the Logserver.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
-
ajwilliamson
- Posts: 15
- Joined: Mon Sep 17, 2018 10:38 am
Re: Adding additional Windows Log?
Thanks for the reply.
It appears you are correct, I am indeed receiving the events from all of the logs, I just needed to be patient.
It appears you are correct, I am indeed receiving the events from all of the logs, I just needed to be patient.
-
scottwilkerson
- DevOps Engineer
- Posts: 19396
- Joined: Tue Nov 15, 2011 3:11 pm
- Location: Nagios Enterprises
- Contact:
Re: Adding additional Windows Log?
Great! Glas it is resolved.ajwilliamson wrote:Thanks for the reply.
It appears you are correct, I am indeed receiving the events from all of the logs, I just needed to be patient.
Locking thread