send zipped report from Event Log Analyzer
Hi, all! I created the report Schedule in Event Log Analyzer. But I cannot receive the report. Because pdf report file is too large. And I want to receive the report file that is zipped. But I couldn't find the configuration. thank you! Cheers, Erelchin
Unable to find "IIS W3C Web Server Logs" Import Lo
Dear Members, I was wondering whether you have similar issues in the past. We made attempts to import IIS log files from our web server and it looks like it is working (i.e. From Home tab > Applications sub Tab) I am able to see the link for Application Type �IIS W3C Web Server Logs� (as shown in Application_IIS W3C Web Server Logs.JPG). I would like to review the configuration for this IIS Web log profile however when I go to Settings tab > Imported Log Files, all I can see is �MSSQL Server Logs�
Admin Password Reset
Can I get the password reset procedures for the admin account on EventLog Analyzer? Thanks.
Cisco AIP-SSM-20 IPS
Can you tell me if Event Log Analyser will be able to collect logs from the above module for the Cisco ASA? Module: AIP-SSM-20 IPS Thanks, JP
Sending reports without zipping it
The reports I have generated send the attachment as a .zip file containing a .pdf file. It is possible to send the e-mail without zipping it?
C:\AdventNet\ME\EventLog\mysql\data\eventlog
This folder is 18gigs in size- anyway to shrink it down?
No data available when report filters used
I'm having trouble filtering specific log data from my reports. I am specifying one server only. When I choose to view all logs, the report generates correctly with many pages of data. When I uncheck the column 'Information' however, the same report does not return any data at all, even although there are several error and other types of entry that I should see. Am I doing something wrong? Many Thanks Stuart
E-mail notification
Hallo, I have a question. It is possible to generate an e-mail notification, if an user in a windows domain trys to logon several time with a wrong password?
Pulling old log info after long down time
So, our system was busted for about a month. I got it up and running and again and want EventLog Analyzer to scan and ingest all the log info available on each host. The servers are set to retain event log info for 60 days. I go to settings.... host details... and run scan now... but that only seems to poll todays data.
IIS Web Logs
We are currently evaluating EventLog Analyser however we cannot find where to access the IIS Web Logs on a remote server, looking in the user guide it says that you use the left pane to navigate to the application log reports and then import a log file, however there is no application section in the left navigation pane. Is there another way to get the logs? We have looked at just importing a file but there does not appear to be an option for IIS Logs the only windows logs appear to be .evt files
Alert
I set up an alert, and use an exclude "duplex mismatch" in the "log message contains" field. If I run a report that looks for "duplex mismatch" will I get any information back? Or will the exclude statement int the alert block this information from the reporting function?
MYSQL error. ../mysql/\bin\mysqld-nt: Can't open file: 'com
I am getting this error after running out of disk space. Any ideas? Thanks ../mysql/\bin\mysqld-nt: Can't open file: 'comp_eventlog_hr_trend.ibd' (errno: 1)
I failed add on Linux.
Dear support-teams. I failed to add Linux. I as follows at Linux. 1. edit the syslog.conf file in the /etc directory. - *.* @192.168.10.12 (this is ELA server.) 2. edit the service file in the /etc directory. - change syslog service port number to 514. 3. restart the syslog service - /etc/rc.d/init.d/syslog restart I add Linux at ELA server. I attached jpg.file thank you in advance. Ko Young Suk Telemant Corp.
error message "access denied", so i attached ppt f
Dear support-teams. I attached ppt file. I want solution. please. thank you in advance. Ko Young Suk Telemant Corp.
I think, WMI problem....
Deam Support-teams. I success at remote host. (OS:Windows 2000 Server) and I run WMI, I confirm in OpManager However, I not operate at winxp_pro. and I run WMI service at services.msc The result to use OpManager failed. (I found that failed WMI service) so, I want to run normally WMI service. Do you have the method? thank you in advance. Ko Young Suk Telemant Corp.
I found that error message "Access Denied"
Dear support-teams. We testing eventLog Analyzer. We found that error message "Access Denied". Then, I run as follow. 1. firewall disable. 2. run RPC at Services.msc 2. netsh firewall set service type=REMOTEADMIN mode=ENABLE profile=all but, I not successsed. I want solution. Thank you in advance. Ko Young Suk Telemant Corp.
I fount that error message "RPC server unavailable"
Dear support-teams. I failed as follow. Local Host : 192.168.10.12, EventLog Analyzer Server Remote Host : 192.168.10.5, We are the host to collect the log. - machine_name : YSKO-PC - domain_name : WORKGROUP - user_name : ysko - password : 12345 We run as follows in wbemtest of the localhost. 1. Type "wbemtest" in the text box and click OK 2. In the WMIT window that opens, click Connect 3. In the Namespace text box, enter \\YSKO-PC\root\cimv2 4. In the User text box, enter YSKO-PC/WORKGROUP\ysko
no display dashboard.
Dear support-teams. Must I install the syslog-ng in Linux? And, We added the host-name to use the eventLog of the windows. But, We do not appear in the dashboard. Do I have the thing to set at the windows? We want solution. thank you in advance. Ko Young Suk Telemant Corp.
I do not know a remote host add way.
OS : windows XP Pro Local host ip : 192.168.10.12 We succeeded in local host. And, Remote host Ip : 192.168.10.5 We add a remote host. But, I do not know a remote host add method. I want solution. I attached doc.file to the e-mail. Thank you in advance. Ko young Suk Telemant Corp.
I fount that remote host ip error message.
Dear support-team. Remote Host IP : 192.168.10.5 but, a host ip is 222.239.74.182 at picture. I do not know the reason. I want solution. Thank you in advance. Ko Young Suk Telemant Corp.
Missing Events in personal Reports
Hi, in our daily report send by mail are some events missing. When we take a look at the report manually the events were shown correctly. Something we can try to correct this failure? Thanks
Best Practice for Clearing Event Logs
I am in the process of evaluating the software and had a question in regards to how the PC event logs are cleared. Are they cleared or does this manually have to be done? Right now, I'm getting an error that my test server has a full security log. Thanks,
Bandwith impact
we have several domain controllers nationwide. I am curious as to how this would impact out network if we were to monitor domain controller outside of out LAN. What are the bandwidth requirements/usage from this product. I am also curious as to how the event log analyzer is able to pull the events from the server.
time on last scan is not same time zone as computer\vista.
In EventLog shows wrong time (zone) where last scans of clients are listed. It does not match the system's time. Approx 4 hours ahead of EST.??? Also my EventLog has once again stopped collecting data? How do you repair the MYSQL database? How do I know why it stopped? Where is database pack\repair icon in Settings?
Minimun permissions service account
Hi, First of all I'd like to say that Eventlog Analyzer is a great product. I'm currently using Eventlog Analyzer to monitor several domain controllers and member servers in our domain. And everything is working perfectly. However the service account is currently a member of the domain admins group, which is something we'd rather not have. Making the service account a local would be acceptable, but this is not a solution for the domain controllers (they don't have any local acconts). What are the
DB size and purging
I have my DB set to keep 31 days of data. However even though we are past 31 days in the cycle my DB continues to grow very large. I need to purge some data. Do you have the commands to do this? Thanks
Online Data
Can anyone tell me how much 'live' data can be available on Event Log Analyser. For PCI compliance we need to be able to go back over a minimum of 3 months data at any time. So if I run report or try to drill down within a small time frame 2 months or so in the past will it have this data available. Is there a way to set how much data is available at any one time?
Best practice Backup procedure
For DR purposes what is the best practice for backing up EVA in the event of a catastrophe? I would like to be able to install EVA with existing configuration/database on alternate hardware in a timely fashion without skipping a beat.
Member of more then one group
I am still evaluating eventlog analyzer and we are liking what we see so far. I have another question that has come up. Can a host be a member of more then one host group? I ask because we are thinking of ways to use the groups and can forsee a host needing to be a member of more then one. Thanks for your reply.
Export Alerts/Reports
Hi, Is there a way to move Alert Profiles and reports to another ELA server on a seperate network? Many Thanks
Editing Reports and Dashboards
we are currently evaluating the product and I have a couple of questions 1) is it possible to edit "my reports" or do I have do delete and recreate with my changes? 2)How can I get reports that are emailed to just email the pdf and not the zip? 3) Can I have different dashboards for different users? 4) (I know its not available but want to mention again anyway) will it be possible in the future to do ldap or active directory authentication? 5)as a prospective customer, what is the release cycle for
Manually force polling/scan of all servers
Is there a way to force eventlog analyzer to poll all servers that have been setup? I know you can go to each server and click the scan button but wit a lot of servers this takes a little time to go through.
Clearing Alerts
Is there anyway to clear alerts in the alerts section. I would like the application to only show alerts of the issues I have not dealt with. So if I receive an email alert I can login and 'approve' or 'clear' the alert?
Built-in reports no longer being populated
Our built-in reports such as Top Users by Login and Top Interactive Login are showing up blank for any day after March 6th... What's the problem?
Database filters take precedence or what?
I've created an alert profile to notify me of any/all critical event log entries on a group of hosts. In addition to this I have identified a subset of critical event ID's that I do not wish to be notified about. So under Settings -> Database Filters I created a filter to drop those specific event ID's. Several days later I am still receiving alerts (sometimes hundreds a day) for the supposedly filtered events. Why does this occur and how do I fix it? Thank you.
Upgrade to release 5 now alerts are not working
I upgrade version 4 to release 5 and now alerts or not working? Any know issue when upgrading from release 4 to 5?
MySQL Administrator
Hello, How do I connect to the EventLog Mysql instance using MySQL tools? I need to extract some custom data using Query Builder. The default port looks to be changed to 33335 but I don't know the admin password. Thanks
Alarms not being created, please help
Hi I'm using free version and alarms are not working. I have 5 servers and the dashboard shows the information about errors and warnings but I configured several simple alarms and it never generates one. I tried looking at the Syslog Viewer and nothing appears there ever. But Show Listen Ports detail says Server IP : 192.168.34.35 While the server IP address is 192.168.0.190 Could be that the reason why alarms are not being triggered? One simple alarm I set is the following: Select Criteria : Severity
Log file format
I am trying to read Domino web log files in the application log viewer, but when I try to import them it gives the message "Looks like the logs in the file are unsupported. Please contact support@eventloganalyzer.com for further assistance." I know the log files are in W3C Extended Common Log format, I thought that was the also the IIS format. Should this work for any webserver using the W3C format? Thanks, Gene
Some suggestions
1.Is it possible to make one host belong to several diiferent gourps 2.Maybe users can define detail time period as they like when using reporting. 'cause sometimes leaders wants to konw that. I think it is an easy way to accomplish this as you can control the sql db
Next Page