Eventlog Stops collecting data from some servers
Since yesterday my server is not collecting data from 2 servers, i already have restarted the services and rebooted the eventlog server but still doesn�t collect. If i use the "Scan Now" link, it works fine. How can i fix this issue and have all servers data collected? Thanks in advance... Wagner.
Backup ELA DB (on MySQL) by Script
Hi, I made a script (batch) to save the MySQL database of the program EventLog Analyzer. The script uses for its efficient operation, the program 7-Zip and the commands Sleep.exe (which is part of the Windows Resource Kit) and blat.exe to send an email at the end of execution of the script. The script syntax is: @echo off rem ********************************************************************* rem * * rem * NOME SCRIPT: Backup_Database_MySQL.bat
Instability in the process SysEvtCol.exe (encryption enabled)
If the option Encrypt Archive Date is enabled, then the process SysEvtCol.exe becomes unstable: the process SysEvtCol.exe goes regularly in crash. The problem, apparently, it seems the same as Build 6002. Alessandro
Eventlog Analyzer Application Log Import
Hi There, I am evaluating Eventlog Analzer 6. I found that application log such as DHCP, SQL and IIS cannot being imported automatically in next day. Also, I cannot find a way to tigger this.
ELA Distributed Version - Global reports
Hi, We are running the Distributed Version of ELA, when on the Admin Server can we run a report for a specific period that will return the logs from all nodes for a specified time period. This would be more beneficial than going through each individual node for the same. Cheers, RH
Log capture interval adjustment
We are pulling the logs from a high number of servers for our present configuration and I was looking into some way to adjust how often the analyzer goes out and pulls the log data in. I couldn't find anywhere to increase the amount of time in between the data retrieval. Is there a way to increase this interval so that we can reduce the demand on our ELA server? Thanks in advance for any info. Peter Worrell Technical Analyst Southern Maryland Electric Cooperative peter.worrell@smeco.coop
EventLog Analyzer: configureAsService error
I'm trying to install EventLog Analyzer on Ubuntu 10.04. I selected the option to install it as a service, but an error occurred. When I checked the log, it shows this: .: 8: setcommonenv.sh: not found I opened the script and changed the line to "./setcommonenv.sh". I then tried to run it manually with the -i switch, but I got this error message: mainusr@testdt:/bin/ManageEngine/EventLog/bin$ sudo ./configureAsService.sh -i ./configureAsService.sh: 167: cannot create : Directory nonexistent chmod:
Changing in mass host login and password
We have over 150 hosts, I would like to change in mass the host login and password for all of these hosts. Thoughts?
How are credentials stored in EventLog Analyzer
Hello, I was wondering if I could get a little bit of technical information regarding Eventlog Analyzer and how it handles authentication and encryption. I am particularly interested how credentials are stored for Windows hosts. Since these users have admin privilege, it's very important to me that the credentials are safe in case the Eventlog server becomes compromised and the database is exposed. I am also interested in how the Eventlog server talks to different hosts. Are these channels encrypted?
Enable SSL Support on EventLog Analyzer
The article Working with SSL (http://www.manageengine.com/products/eventlog/help/appendix/eventflow_ssl_support.html) is a bit inaccurate. The part to comment, to disable the HTTP protocol, is (in the file <EventLog Analyzer_Home>/server/default/deploy/jbossweb-tomcat50.sar/server.xml) <!-- A HTTP/1.1 Connector on port 8080 --> <!-- The compression parameters are taken from the default Tomcat server.xml--> <!-- <Connector port="8080" address="${jboss.bind.address}" maxThreads="150"
Other Log files formats
Hi, I would like to now if the dev team is considering to integrate in EVA other types of formats. Now we can only import FTP/Web server log files from IIS, log files of MSSQL, and Windows Event logs... Do you think it will be possible in the next releases (in the one coming soon ?) to import log files from other formats (like Filezilla or Gene6 FTP Server for exemple for FTP) ? Thanks in advance for your answer Regards, Rémi
Eventlog analyzer vs windows firewall
I install eventlog analyzer on Windows XP. I want to collect logs from Windows 2003 Server. Windows 2003 Server has enabled windows firewall. What ports do I need to open if I want to collect logs? please give me a favor.
FTP non functions
I installed a last release 6010 I Try to connect for import a file from FTP Remote HostName/IP User Name Password Protocol FTP SFTP/SSH Port But After Insert User Name and Password The program Return Failed due to either wrong username and password (or) the server may be down! I sure that the user name and pwd are correct.
Issues while applying license
Dear Customers, If your license information is not updated even after applying a new license, Restart the EventLog Analyzer service and check. If the product license period is expired and you are not able to apply the new license using Web Client, please follow the below steps. Go to Windows services and stop the service "ManageEngine EventLog Analyzer", if it is running. Go to the command prompt and go to the folder <EventLog Analyzer Home>\bin folder and type the following commands. 1. Shutdown.bat
Upgrade to 6.1 issue
Hi, I upgrade all my installation of ELA to 6.1 version. On two one I have this problem: hosts show always 0 log. If I create a report there is no data. But if I click on "show last 10 event" on home page (last right icon), the last 10 event are correctly displayed. If I look at Host Detail page the "last message on" are correct. If I search on filesystem on the directory for the archived files I find it. So it seems that data are present but they are not correctly displayed. Some ideas ? Bye
Event Log Analyzer cannot start
Hi everyone, the evaluation period of my Event Log Analyzer installation was expired. The program automatically switch to free edition and I was able to cllect logs from 5 hosts. After a server reboot the service starts normally but if I connect to the web client I received the "page unavailable" message. If I launch the run.bat script I've got the option to insert the path of the license file (I don't have a license file for the free edition...) and the program won't start. The Windows Event Viewer
HIPAA Compliance Report - $ usernames
Hello, I am trying to evaluate this program on whether or not to purchase. I really like the built-in reports for HIPAA compliance. The only problem is that I am getting over 4000 successfull logons per hour, where mostly they are the workstation usernames that end in "$". Is there anyway to filter them out? I have tried different logic with the database filters, and even creating my own report (which seemed to possibly work, but it included the whole log instead of the one line log that the HIPAA
Advapi Authentication
What would be the best settings for the eventlog manager to only report and email true user login failures, not Advapi Authentication local and system failures
Event Log server ip address changed to 127.93.94.95? since changing to virtual server
Using EventLog analyzer v6 build 6001. We have switched this server from a physical server to vmserver. The eventlog is reporting the EventLog server IP address as 127.93.94.95 and is listening on port 513,514. When I use the server diagnostic option, its states the real ip address 10.x.x.x. The 10.x.x.x is the correct address. Can you suggest how I could correct this problem as no servers are logging to the server. I have also logged this as support request using the online form. Think there
Role based access
Dear madam or sir, I really like EventLog Analyzer, BUT. I would like to have roles for users where I can select what a user can see or can't see. For example; My current client doesn't want the engineers to see the Windows security events. In the current version I can't hide that for certain users. Or I want certain reports for a security manager and not for engineers... Are there any ideas to use role based access? Thanks in advance, Johan Omlo
Same Email elerts sent out over and over.
I have a clean install of Eventlog Analyzer 6.1 (stand alone). Some times a alert (or group of alerts) seem to get stuck in a send queue. I get the same emails over and over until I reboot the Eventlog Analyzer server. Rebooting is the only way to get it to stop sending. This happens very often (and with alerts from different client servers) and if the group is of 30 alerts, I end up with hundreds of e-mails in my inbox that are all the same with the same time stamps. Has anyone had this issue? Is
Migration of Standalone ELA to Managed ELA server
Hi, I have preformed the migration of our Standalone ELA Server to a managed Server, all went smooth. I have also been able to set this Server up under the Admin Server as a Managed box. The question i have is that i want to setup the communication between the two over HTTPS rather then HTTP. Can you advise what i need to change on the Managed Server. I believe i only need to edit the managed server properies on the Admin box to change it to Https, for that side. Cheers, RH
Eventlog Analyzer 6.1 installed on ubuntu 10.04 server 32bit
Issue I am having is once I successfully install the software. I cannot add a new host. I click on add new host and the screen flickers once. I had this problem with 64bit version so I decided to use the 32bit version. Still doesn't add hosts. Any help would be great.
match a phrase in a report criteria
Hi, I want to generate a report matching a specific phrase. For example I want to find a log messages with exactly the string: "logon type: 10" There is a way to define this in a report? The comma don't help me... and if I define "match all" the result is not what I want. Thanks for your great job! Alessio Susi
autostarting eventlog analyzer
I ran the install as a service script but the service stops collecting after a certain amount of time. My setup is EVA v6.1 install on ubuntu server 10.04 64bit. Any help would be appreciated.
Does ELA support forwarding of logging data?
Hello; The subject says it all...does ELA support the forwarding of data that it collects to an alternate logging server? George
Installation problem of event log analyzer 6.
I've a pc where is installed apache 2.2 and mysql 5.0.37-comunity-nt on Win xp sp3 machine. Apache use port 80 and mysql use port 3306 The installation program of event log analyzer terminate without error. After installation I start the program from start menu and in the command shell I receive the error "cannot connect to database". I've changed mysql and web server port, restarting the pc, and when starting the application the error is the same. I've try with other ports, disabling antivirus,
Log As400
Is not possibile create a file log for as400 same as Server Windows. In Italy exist a law that administrator must save a log autentication. This logs must be only read. Exist a hot fix?
How to monitor sql SERVERLogs?
How to monitor sql SERVERLogs?
ManageEngine® EventLog Analyzer 6.1 Released
ManageEngine® EventLog Analyzer 6.1 Released We are glad to announce the release of ManageEngine EventLog Analyzer 6.1 (GA) Distributed Edition and Standalone Edition. Download Distributed Edition Standalone Edition Read More What's new in this release? 6.1.0 - Build 6010 - Distributed Edition GA release of EventLog Analyzer Distributed Edition. New Features - Admin Server The general features available in this release include, Centralized Archiving for Distributed Edition New Features - Managed
Transfer ELA to a new Server
I have seen a post (possibly on the old forums) about transferring ELA to a different server - I'm obviously being stupid because I can't find it again - any chance someone could show me a link to the relevant article ?
ManageEngine Announces the Availability of EventLog Analyzer 6.1 Early Access
The EventLog Analyzer team is happy to announce the Early Access of the latest version 6.1 This release is another milestone packed with powerful features. If you'd like to try the Early Access of EventLog Analyzer 6.1 of Standalone and Enterprise Editions, please contact the support team at eventlog-support@manageengine.com The support team will provide you the download links and complete list of features. Please note that the Early Access versions are meant only for testing purposes and should
Error code 515 invalid license file
I am getting error code 515 invalid license file for event log analyzer when i try to start the server. This is in turn producing a mysql error and does not start the server.
What are the mininmum user needed login credentials for windows log collection?
Hi there, I'm looking for an answer of the question above. The problem is that our internal company policies does not allow to provide applications with accounts from the Domain Admins group. So what are the minimum rights which the user should be provisioned with in order to successfully collect the event logs from windows domain controllers for example? (If you are not able to publish the information here, please consider send it to my mail) Thanks in advance... Momchil
EventLog application logging
Hi, For auditing purposes I need to see what a user (especially admins) do in EventLog, like creating new users, changing user rights, etc. Is there a way to see this? Thnx, Johan Omlo
Problem missing log
In the event log machine i found this error. Cannot find table eventlog/eventlog_hr_trend from the internal data dictionary of InnoDB though the .frm file for the table exists. Maybe you have deleted and recreated InnoDB data files but have forgotten to delete the corresponding .frm files of InnoDB tables, or you have moved .frm files to another database? Look from section 15.1 of http://www.innodb.com/ibman.html how you can resolve the problem. 100419 10:53:08 [ERROR] ../mysql/\bin\mysqld-nt: Can't
Java tuning for Eventlog Analyzer
We run the latest release of ELA. Our setup is such that we have a MSSQL 2005 database on a separate server from the ELA server. We have run into performance issues. I read the the Java tuning instructions on another post. However, there is no wrappermssql.conf file. Can you give some instructions on how we can tune Java in this environment?
Email subject/body changes and also Update time?
Three questions, I hope it doesn't get too confusing. One. Is there a way to change the email subject I would like to put our "safe" word in the subject so that it doesn't get rejected by our spam filters. Two. It would also be nice if the alert could be customizable. In other words not only tell us what the event is but add our own input to the body of the email eg lets say you have an alert on a backup server. And the error you get is that the backup drive is off line. Then you would get the alert
RPC server is unavailable
Trying to add hosts i get the error RPC server is unavailable 0x800706ba. What is the fix for this problem.
Missed logs capture
Hi everyone, I've installed the program on a Windows XP machine. The machine was out of date and I set Windows Update to automatic. The machine restarts at 3 am but the Event Analyzer service didn't start correctly and we start it at 12 am. The logs in this time rage weren't captured. Is there a way to set the program to capture previous logs? When I did a fresh install of the program how can I tell him to capture all the logs that are in Windows Events Viewer? Thanks in advance. Michele
Next Page