username "\"
Hi, Could somebody help to understand why do I get authenication attemps with username "\". I have attepts like this for several machines in our domain. I was trying to find any information on this cases on the web, but couldn't find anything. Username
EventLog Analyzer’s 2023 in Review
2023 has been a year of significant advancements and improvements for EventLog Analyzer. With a host of new features, enhancements, and fixes, EventLog Analyzer has fortified its capabilities, offering a more robust and efficient solution for log management
How to set "log source" for a device?
Hi Team, In my Solaris servers, I want to report on "unsuccessful user logons", but I can only add devices, so my question is, where and what path/file should I set as my data-gathering source? Kind regards Mo
Password reset
I forgot the password for my username (admin). Could you please tell me how to reset the password?
Cannot obtain the SQL Logs
I am encountering some issue while adding SQL Server or MySQL Server into Manage Engine Log Analyser and i may need your assistance on this. Before we dive into the issue, let me Explain the deployment structure so it will be more relevant to the issue
Mikrotik logs unreadable
Hello, I add a Mikrotik in the syslog devices configuration, I get logs, but can't read them, I don't know if the configuration is wrong, I attach screenshot. Hope you can help me. Regards
Commnad Line Audit
How do I audit Command Line through ELA?
Heavy Disk Usage
Hello there, We are facing problems with a huge disk usage of Log360. It's at the same machine with Eventlog Analyzer. Host machine is Windows server. We are looking for a way to purge the data or shrink it or ... . No helpful option in general setting
How to calculate my current events per second?
How to calculate my current events per second?
ELA having more than 20 ms
ESX PROD My ELA server is very slow and I am trying to understand why.
How to configure Syslog in Fortinet Firewall
Kindly help to configure ME ELA in Fortinet Firewall currently we are running with fortios 7.4.0
Unable to read log from the newly added device.
Successfully added the Cisco device but unable to receive logs from it. What to do?
the integration with Log360 Cloud
Hi, I would like to check if the integration with ELA is still available.
EA Dashboard - Logs Trend wrong Time
i set the wrapper additional to GMT-7, System Diagnostics confirms I have GMT-7 set and shows proper time. But on the Dashboard - Logs Trends widget still shows UTC times. Anyone got any idea how to fix this? TIA Jim..
Problème export logs
Bonjour, Nous avons effectué hier (08/06/2023) un export des logs sur "EventLog Analyzer > Firewall VPN user Connected" mais les résultats nous apparaissent vides et aucune donnée ne nous est parvenue. Nous avons ensuite vérifié les bases enregistrées
Testing SMS via HTTP (to SendQuick - formally Talariax) in ELA encountered error
Hi My SMS provider is SendQuick (formally name TalariaX). In ELA , my configuration , under System Settings \ Notification Settings \ SMS Settings : a) SMS Provider : wwwwwwwwwwwSMS Service Provider b) Service Type : HTTP c) HTTP(S) Method : Post d) HTTP(S)
Removing Workstations from Server Audit in AD Audit Plus
I just installed Log360 and it populated my workstations automatically. But it pulled a bunch of old disabled workstations from my Active Directoy. I and goto Server Audit and then Configured Servers and Clcik Workstations. Here I try to delete any workstaton
About retention settings
Hi all, As seen in the help page(https://www.manageengine.com/products/eventlog/help/StandaloneManagedServer-UserGuide/AdminSettings/db-storage-settings.html) retention settings of ela, "Current Storage Size" allows us to adjust how many days to keep
About retention settings
Hi all, As seen in the help page(https://www.manageengine.com/products/eventlog/help/StandaloneManagedServer-UserGuide/AdminSettings/db-storage-settings.html) retention settings of ela, "Current Storage Size" allows us to adjust how many days to keep
Analyzer doesn't seem to be parsing firewall logs
I'm trying to send OPNsense (fork of PFsense) firewall logs to the analyzer. However the analyzer doesn't seem to properly parse the logs as firewall logs. Such as it doesn't see the IP's or action etc of the log. It managed to pull the date pretty much.
Zyxel eventlog categories
Hello. I configured my Zyxel Zywall USG100 using this manual As a result, It works. Eventlog analyzer grab events and make report. Unfortunately, I see only 3 categories: Notice Information Alerts Other categories are empty. Also, I see a message column
My EventLog Analyzer often failed
Hello. I have virtual Ubuntu 22.04 (ESXI). I installed EventLog Analyzer Server and ran it. The first-time server doesn't install like the service, but after manual installation, all went well. I run the service and logged in through my browser correctly.
Create alert for device down
Can i create alert notfication for hardware device down ? eg dell network switch is down, i want eventlog analyzer to send email alert to notify us
what should be Specs of my Windows Host Machine where i would install EventLog Analayzer Application and manage logs
Dear Team, what should be Specs of my Windows Host Machine where i would install EventLog Analayzer Application and manage logs. Below is the detail of myd evices etc. I have an Oracle EBS Suite Configured on Linux machine. I have total 11 Devices: *
Help setting up alert to display Server Reboots?
I am trying to setup up ManageEngine to send me an email alert when a server goes offline, and one when it comes back online, I have tried adding the following event ID's and restarted a server but it doesn't send the email through. The email alerts are setup fine though because we have a lot of other alerts setup, could someone possibly share how they are currently getting the alerts to work when the Server reboots? Event ID's I've tried: Event ID 6005 Event ID 6006 Event ID 6008 Event ID 6009 Event
System powerfailure and reboots - Alert creation on Event log analyser
Hi Community, can someone guide me on what event id must be used to track system reboots and power failures? Systems reboots on Windows servers/stations Power failure on networking syslog devices like switches. WE are on build 12.2.5.
I deleted a Windows Domain Controller from Manage Engine EventLog Analyzer Group and Now I can't seem to add it back
Dear Community, I have Configured Manage Engine and was successfully using it without any Issue. For some reason I deleted a Domain Controller from the Windows Devices and then wanted to add it back, but I can't. I am Attaching Screenshots for you Reference:
How can I Add Oracle Application/ Databse Logs to collect logs in Manage engine EvenTLog Analyzer
Dear Community, I have My Oracle Database/EBS Application & I want to Monitor it's Logs in Manage Engine EventLog Analyzer. I have already Added My Base Machine i.e. Linux Machine in ManageEngine EventLog Analyzer and Syslog Events are being Monitored
Log Collection Filter in ManageEngine EventLog Analyzer
Dear Community, I have Added Windows Devices and Syslog Devices in Manage Engine EventLog Analyzer. But all the Logs are being scanned. Instaed, i only specific weinwos security logs to be scanned (4720 i.e. new user creation ,4724 i.e. Password reset
Cisco WLC
Is anyone monitoring a Cisco WLC (9800 and 5520 in my case) with EventLog Analyzer? We arent getting any real actionable data from the syslog or traps with the built-in reports.
Microsoft Sysmon logs
Dears, Does Eventlog analyzer supporting parsing Microsoft Sysmon logs that help in forensic investigation ? I checked but couldnt find anything related to it. https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon
Custom Log Parser no longer available?
Quick question, how do we create custom patterns for log parsing in the current version? I am directed to the search tab (see screenshot) which doesn't seem to offer that functionality. My experience does not match up with what is in the product docs: https://www.manageengine.com/products/eventlog/help/StandaloneManagedServer-UserGuide/AdminSettings/custom-patterns.html
Moving Eventlog Directory to another partition
Hello. I need some help or guidance on moving the eventlog analyzer. I already did but can't start the service it says: DAEService in the wrapper log and file not found on the serverout log. BTW, is just another partition, it's in the same server. Already
TLS 1.0 and 1.1 enabled by default....
Installed this as a demo less then a month ago, Our security vendor scanned this server and found that TLS 1.0 and 1.1 was enabled, Looked at server.xml and saw the following line...... sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2" Should
Does ME Log Analyzer support logging of PHP Error/Exception logs?
I'm looking for an log management solution which not only supports Apache access and error logs, but also PHP error and exception logs, with stack traces. I'm led to believe ME Log Analyzer would be the most suited ME product for this goal, but I can't
Log Management and Collection
Is it possible to have predefined scripts for Windows OS or Linux that will allow EventLogAnalyser to Pick only meaningful logs from all other endpoints?
SSL Syslog via NXLog Issues
Hi there, We are running Log360 with ELA installed as a component. I am attempting to ship logs from a Windows device using NXLog to ELA over TLS 6514. To test, I started with UDP 514 which were successfully received by ELA. Next TCP 514, which was
Custom table style view for reports
É possível criar uma visualização de widget de tabela para um relatório personalizado? Se sim, como posso fazer isso?
How to ensure network device keep sending logs to ELA server?
Hi Team, Please answer below question. How to ensure network device keep sending logs to ELA server? How to setup alert if network device did not send logs to ELA server for more than a month? Thanks, Leo
ESXi and VCenter not showing Syslog events
I have added two ESXi Hosts along with a VCenter server but no data shows on the Syslog events. ESXi and VCenter configured to send logs to the Syslog server. Get an error when trying to verifying Login after adding VCenter through Settings | VM Management
Next Page