Where i can find on server MS SQLlog file?
Where i can find on server MS SQLlog file?
Eventlog Analyzer 6 error on server 2008 32bit
Livello Data e ora Origine ID evento Categoria attività Errore 16/12/2009 5.13.38 Application Error 1000 (100) Applicazione che ha generato l'errore SysEvtCol.exe, versione 0.0.0.0, timestamp 0x4b1df01f, modulo che ha generato l'errore ntdll.dll, versione 6.0.6002.18005, timestamp 0x49e03821, codice eccezione 0xc0000005, offset errore 0x00067580, ID processo 0x1b1c, data e ora di avvio dell'applicazione 0x01ca7e06077672bf.
EventLog Analizer support Windows 7 ?
Does anyone know if ELA is installable and working on Windows 7 ? Does is it supported ? TIA
AS400 collect logs problem
Hi, I'm trying to receive logs from AS400 server to ELA. I must use the european date format dd/MM/yy. This seen be a problem because I receive only a part of logs every day. In particular I receive logs from 00:00 to 02:59. NOT one from 03:00 to 23:59. I don't understand what I wrong. Can anyone help me ? Regards, Pierpaolo De Grandis
Loging user login of administrator
Has anyone had any succes or tips for logging when the administrator logs in. I have an event that logs security event 538 and security event 540. Its really just to see if anyone is logging in as administrator. (some have the password but are not suppose to use it unless emergency.) However I get logins events being emailed to me via the eventlog software that Im sure are not users logging in. The trouble is that some processes that run show up as administrator logins. It seems almost impossible
as400 incorrect logs
Hi, I need to collect AS400 logs so I'm testing EventLog Analizer. I create the object, assigning IP, admin credential and the european date format dd/MM/yy (NOTE THIS). So, I receive some logs but there are somethings wrong: 1. I receive only logs from today at 00:00 to today at 03:11 2. I continuosly receive the same logs. Every 10 minutes logs increase of dimension but they are always the same. What can I do ? Is there some other parametes to change ? TIA
Time and Date are wrong
Hello, I have a mix of Win 2003 and Win 2008 servers. The 2003 servers are being logged in EventLog Analyzer correctly however the Win 2008 servers are not. The times and dates show in Eventlog Analyzer as approx 5 hours in the future from real time. The time on the 2008 servers are correct. Any ideas?
Unnecessary information in CSV files
Hi, Most ManageEngine products include information in CSV files that isn't actual data. This impedes importing into Excel, SQL Server etc. Is it possible to enable CSV's to contain only the column names and the rows of data, and leave the report name and date ranges in the file's name? Cheers, LeRoy
Windows log alert encoding
Hi. I have a trouble with encoding alert messages. For example: when somthing wrong on windows server (win2k3)russian localisation, a can see log message in EventLog An. in russian character, but when i try to use alert messages i see nonreadable message like this: Dear User, This is an automated mail generated by EventLog Analyzer Alert Generation Engine. An event matching the alert profile win occured at 12:09:42, Wed, Dec 02 2009. Alert Details Host SERVER2003 Application Security Criticality
rsyslog.conf
Do you anyone know how to configure the rsyslog.conf in Fedora 11 for Eventlog Analyzer to get those logs?
Syslog from AS/400
How to monitor syslogs from IBM AS/400 e series Pramodh
Can EventLog Analyzer and OPManager live on the same server?
Hi, Can anyone tell me if EventLog Analyzer and OpManager live on the same server? I would like to get the extra funxtionality of EventLog Analyzer for monitoring our servers but would prefer not to have to setup another new server if at all possible. Cheers,
How do I capture IIS and SQL logs?
Hello, I am new to ELA. How do I capture IIS and SQL logs? thank you.
Cannot collect any log
Hi, i have set up EventLog Analyzer 6.0.0 32bit on Suse 9.3 (on MYSQL) I've follow step by step your Installation Instructions as the User Guide. I've added 3 Unix Hosts. The status of this Hosts is: Logging Started / Scan successfull (Green Icon) I've added a host, but EventLog Analyzer is not collecting event logs from it. I have read the User Guide to the chapter Troubleshooting Tips at the paragraph "I've added a host, but EventLog Analyzer is not collecting event logs from it" and: - The host
Reports
I need a Top Hosts by Event Severity report for different groups. If I create a new report, the Top .... reports are not available in either custom or compliance. Eg. Network Devices - report to show Top Hosts by error severity. Desktops same report but only that group of desktops. Thanks for any help.
PDF report customization
Hello I think this topic can be helpful for other people. I've been asked to customize the PDF report front page, in order to display company logo and such. I think that other page elements can be customized. Where can I find the related templates? Thanks for your help Regards stefano
log on as/400
Hi, I've a big problem with as/400 and eventloganalizer . i'not be able to collect any log, we get an acces denied on the web interface . Any suggestion ?
How do I create a Customizable Report for AS/400
Hi there, I would like to create a report that will provide me with the details of the users that have failed logins. This information is in the HISTORY log. Is there a way of creating reports that will pull out all information by using the AS400 Message ID's - e.g. "CPF1454" Cheers.
Move data storage.
Hello, Is there anyway i can move the data that EventLog Analyzer stores? We have an OS partition and a data partition and I would like to move where data is stored. Possible?
<device_name>_for_archive folder vs. <device_name> folder
Hello, Can someone please let me know the difference between the <device_name>_for_archive folder and the <device_name> folder? these are found in the directory where I am storing the archives for Event Log Analyzer. The reason I ask is we want to keep 6 months of archives, but evening with nearly 2 TB of dedicated disk space to this, we can only get about 4-5 months. I see that these two types of folders are the cuplrits as the zipped files are about 96% smaller due to the compression. We want
Database retention setting
Hello everybody, I'd like to store a 6 months period in the ELA DB: how can I set this retention period? Alternatively, how can I purge data older than 6 months? Thanks to whom will reply Regards Stefano
Ability to import Syslog files manually into EventLog Analyzer.
Currently, we can import only Windows Event Logs into EventLog Analyzer. We many different flovors of devices including Unix, Windows, Network Devices, etc. we need the ability to import Syslogs from almost any device.
Within EventLog Analyzer, Import folder with numerous .evt logs
My server administrators organize all archived security .evt logs into folders by domain controller. I would like to point to each folder and import the logs. Is this possible?
AD User Management
When I try to remove / delete users from the User Management screen. It just gives me the hour glass and eventually times out or I get a not responding error. Build 6001 Premium License.
Report on Link State Changes
Hello! Running EventLog Analyzer: Build Version : 6.0.0 Build Number : 6000 Service Pack : SP-6.0 Database : MYSQL Build Date : Aug_31 Today, I was in need to observe Link State Changes on a selected Cisco Catalyst 2950 switch throughout different Time Ranges. As expected, the totalled occurence of this event changed proportionally to the time range: 3 months back => 7486 occurences 2 months back => 5045 occurences 1 months back => 2487 occurences However, the detailed
AS/400 log analysis
I have added an AS/400 host Green checkmark indicates all is OK However, no data seems to be collected Plaese advise
Archvied Logs (Bulk Import)
Anyway to import my archived log files in one bulk rather than importing 1 file at a time?
SysEvtCol.exe cannot start while mysql password changed.
Since I m the first time using ELA, I have try this problem couple of days... The situation is I must change the Mysql password from default blank to something so I am using the following methods to change the password Connect to EventLog Analyzer's MySQL. Go to <EventLog Analyzer Home>/mysql directory, execute the following command ./bin/mysql -u root- h localhost-- port=33335 -D EVENTLOG Execute the following queries in the database USE mysql update user set password=password ('New Password')
Top Hosts with Failed/Success Logons Report not generating
Hello All, I am using EventLog Analyzer 5 for monitoring syslog messages of my routers. EventLog Analyzer is properly configured and it is reporting all events in real time. But problem is this that i cannot watch Success and Failure events of my routers. Second i also want to generate reports of Top Hosts with Successful Logons and Top Hosts with Failed Logons but i always shows No Data Available. Can you please explain that how i can generate these reports and how i can view Failure and Success
Not enough storage is available to complete this operation
Hello IT Gurus' I have been getting this strange error message when i am trying to add one of DC - It was working fine before - but in the last few days it was not funcationing properly - so when i tried to delete and add it again - and getting this error message .. Kindly assist We have Eventlog Analizer 6.0 Not enough storage is available to complete this operation. 0x8007000e
reporting on log collection status
Hi, is it possible either to create a custom report that emails with the status' of data collection in the last 24 hours or create an alert that alerts when a client is unreachable or access denied Thanks in advance Chris
Public viewable page without logon
We have a monitoring station that cycles through several websites, all server/app monitoring pages in our support office. Looking to see if we can get a default dashboard (say for a Guest user) view either published by ELA host on a timed basis without logon, with an auto-logon method and/or have ELA publish a view or report to an HTML file we could then allow control access via the web server to allow our script to cycle through it as well.
Wich are the best parametters for set an alert on the EventLog Analizer for Cisco Devices?
Hello everyone: I'm configuring alerts profiles in the EventLog Analizer for Cisco Devices and it is not giving me any alerts. I check the email server parameters and everything is ok. My guess is that the parameters in the alerts profiles are wrong, so i am asking for your help. Thanks.
2003Svr stops allowing ELA host to pull logs
Recently noticed one of our 2003 Srv’s stopped responding to ELA. I’m thinking this is system specific, but thought I would run by support to see if there are any other known issues other than in documentation that I could be missing. I upgraded to v6 which seems to have completed fine (thanks for the info BTW) and no change in status for this server. Verified DCOM and firewall rule as stated in trouble-shooting, all pass. From ELA Host to the problem server, I complete a net use to both C$
Problems with the hosts of the EvenLog Analizer
Hi everyone. I got a problem with the web interface of the EventLog Analizer v5, once i get ride of a number of host, they reappear again and again. Is there are another ways more radicals to do that?
User Accounts - More Control Needed.
Hi, It would be benifical if we could allocated devices to specific users ratther then a Guest or operator account. Members of our team only need to view the Syslogs from a few systems and not them all. Is there a way that this can be set? Also, is it in the pipeline to allow us rebrand ELA the same way we can in Opmanager and Device Expert ? cheers, RH
When the log collector stops?
When the log collector stops and you start it in the web...what is that link acutally doing. I'd like to write a rule or create a script to try restarting it again, instead of it waiting for me to restart it again. Thanks, Aaron
Meeting Regulatory Compliance w/EventLog Analyzer
Hi All, EventLog Analyzer is a good product and I their support is responsive. However, one area I am having difficulty addressing with the product is regulatory compliance for log integrity. Most regulations require that the integrity of logs be maintained. I was wondering if anyone could share how they are addressing this with EventLog Analyzer. Is anyone encrypting archive files and creating Hashes on them to prevent tampering? Is anyone encrypting the database? Input would be greatly appreciated
EventLog Analyzer 6 - Database filters don't works
EventLog Analyzer 6 - Database filters don't works Hi, I am testing the free version for EventLog v.6 after migrating trial version v5. The problem is that Database filters don’t works for router host (syslog type). I mean, all events are been recorded in the database, so the database is too big for my purposes. Is it a bug in the program?. The filter is “Drop the Logs containing : m=82,m=14 Match Any Match All”, and filter by “local 0, emergency, alert, critical and error”, but
Access Denied on Server 2008 box
Hi, I am having an issue where I get an access denied when connecting to the local machine that web analyzer is running on. I have tried connecting with no user name and password (because I am connecting localhost with no joy). I have run the wbemtest tool and can connect with no errors without using any login details.. When I run the query Select * from Win32_NTLogEvent from the event logs are pulled in fine. However I still get access denied from the add host screen. Please help.
Next Page