Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

Log Server and outputting certain messages to a script

https://support.nagios.com/forum/viewtopic.php?t=45193

Page 1 of 1

Log Server and outputting certain messages to a script

Posted: Wed Aug 16, 2017 11:59 am
by sanjayhiranisq
Hi,
I cant figure out a way for logserver to kick off a script everytime it gets a certain message. I have tried alert and execute script but that just gives alert text output and not the actual incoming message. Specifically I am after login/logout events from windows endpoints and send them to a script that will add to a database.

Please guide me through please.

Re: Log Server and outputting certain messages to a script

Posted: Wed Aug 16, 2017 1:05 pm
by scottwilkerson
This isn't directly possible with the alerts because some queries could have hundreds of thousands of events.

This best I could suggest at this time would be to pass the timestamp through to the script and you would have to use the API to re-call the query you are looking for.

Re: Log Server and outputting certain messages to a script

Posted: Wed Aug 16, 2017 1:07 pm
by cdienger
I confirmed the behavior and would need to file a feature request in order to be able to send more details in a script. In the meantime perhaps you could use the email alert option. The email alerts cant include details of an event with the %lastalertlog% %last10alertlogs% macros.
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited