Page 1 of 1
Windows Event Logs monitoring
Posted: Fri May 07, 2021 9:57 am
by s.diwakar1
Hi All,
Hope you are doing well !!!!
I am using Nagios Core 4.4.5 and NSClient++ to monitor my windows hosts.
Can we monitor windows event logs using NSClient++ using check_nt plugin or any other way to do so?
Thanks in advance !!!
Regards,
Diwakar Sharma
Re: Windows Event Logs monitoring
Posted: Fri May 07, 2021 10:38 am
by benjaminsmith
HI Diwaka,
Doing well! Thank you.
The
CheckEventLog filter is for checking the event log and can be used with check_nrpe as well.
There's a couple forum posts avaialb with specific examples that should help get your started.
Windows EventLog with NSClient
Monitoring Windows Event Logs
Let us know if you get it working.
Alternatively, our NCPA agent has Event Log monitoring built into the API.
https://www.nagios.org/ncpa/help.php#api-modules
Re: Windows Event Logs monitoring
Posted: Mon May 17, 2021 7:16 am
by s.diwakar1
Hi Benjamin,
Thanks for your reply.
I am trying to monitor windows event log using WMI. I tried below script:
https://exchange.nagios.org/directory/P ... MI/details
Command: /usr/local/nagios/libexec/check_wmi_eventid.sh -H ********* -u ****** -p ******* -l application -w 2 -c 3 -t1 -m60
Output: Select EventCode,EventIdentifier,EventType,SourceName from Win32_NTLogEvent where ( Logfile = "application" ) and ( EventType = "1" ) and TimeGenerated > "20210517093314.000000-000"
WMIC ERROR : /usr/local/nagios/libexec/check_wmi_eventid.sh: line 323: /bin/wmic: No such file or directory
Can you please help?
Thanks in advance!!!
Regards,
Diwakar
Re: Windows Event Logs monitoring
Posted: Thu May 20, 2021 3:13 am
by yupepa
Hi Diwakar,
I use check_logfiles_health for all kind of Windows Eventogs from Consol Labs. Try this, explanation at
https://labs.consol.de/de/nagios/check_logfiles/.
Regards
Paul