Asset coverage and retention evidence
I have the requirement to provide evidence for both Asset coverage and retention period. Are there any existing dashboards, reports or searches that can compare assets (Windows server) to OUs in Active Directory? Also, I need t be able to prove the retention
Alert Criteria - Null field
Is it possible to add a match against a null field when building the Alert Criteria in an Alert Profile?
Alert Criteria - Null field
Is it possible to add a match against a null field when building the Alert Criteria in an Alert Profile?
TLS Encryption Support for Log Forwarder
I am currently configuring the log forwarder in ManageEngine EventLog Analyzer and would like to know if it supports TLS encryption for secure log transmission. Could you please provide information on whether this feature is available and, if so, any
Log File Format and Placement in EventLog Analyzer
I would like to know if EventLog Analyzer keeps log files for all the logs it receives, such as logs from Windows devices. Additionally, could you please provide information on the format of these log files and their exact placement within the program
CSV File Report when e-mailed shows blank fields but when clicked on it appears
Hi have a simple report that is e-mailed to me daily. The CSV file contains the information in the Message field but is not visible until you click on the field and it appears in the title bar. See picture below. Notice the cell is blank but the title
Encryption algorithms
Hi, I work on Manage Engine Soutions on behalf of a customer, and we would like to know which is the encryption algorithm used for archive encryption? How is the integrity checked? I search on EventLog Analyzer documentation and on the internet, without
windows agent is running ，but Manage Devices not shown devices
ManageEngine EventLog Analyzer agent service is running SysEvtCol.exe is running Also regedit shows configure is right
Low memory detected on Log360's elasticsearch
Hi , I have a problem with EventLog Analyzer: Low memory detected on Log360's elasticsearch, increase the memory to at least 7 GB. Can you help me solve this problem?
Monitoring EventLog Analyzer
How would you recommend that EventLog Analyzer be monitored to check it is functioning without errors? We want to put in place automated monitoring with our monitoring system to be alerted if EventLog analyzer is not functioning normally.
Eventlog Analyzer export to CSV really slow..
Hi, I'm sure I'am not the only who noticed this.. Basically I am trying to export a search result about login event that is made up of about 2 million rows. Based on progress I see it should takes few hours to complete. How can it be so slow? Is there
Run workflow failed. Access\Permission denied
Hi, I have a problem with workflow in EventLog Analyzer trial (build: 12411). I run workflow on monitoring device (windows server 2016). I receive the following error: 1. Test service execute failed Error # while using given credential - Access is denied.
PFSense Logs Issue
Hi there, Having issues with PFSense logs. Things seems to be working fine but in Reports (of course under pfSense), it says not device configured. Screenshots attached for reference and guidance. Thanks
Where to add File Integrity Monitoring???
Hi. Using EventLogAnalyzer Version 12.4.1. I added 4 Devices (Windows Servers 2016). One of them is a File Server, one a RDP-Server (Terminalserver). Wanted to view the buildin Standard-Reports. So I switched to the Tab "Reports", choosed "Windows File
the integration with Log360 Cloud
Hi, I would like to check if the integration with ELA is still available.
Testing SMS via HTTP (to SendQuick - formally Talariax) in ELA encountered error
Hi My SMS provider is SendQuick (formally name TalariaX). In ELA , my configuration , under System Settings \ Notification Settings \ SMS Settings : a) SMS Provider : wwwwwwwwwwwSMS Service Provider b) Service Type : HTTP c) HTTP(S) Method : Post d) HTTP(S)
About retention settings
Hi all, As seen in the help page(https://www.manageengine.com/products/eventlog/help/StandaloneManagedServer-UserGuide/AdminSettings/db-storage-settings.html) retention settings of ela, "Current Storage Size" allows us to adjust how many days to keep
About retention settings
Hi all, As seen in the help page(https://www.manageengine.com/products/eventlog/help/StandaloneManagedServer-UserGuide/AdminSettings/db-storage-settings.html) retention settings of ela, "Current Storage Size" allows us to adjust how many days to keep
Analyzer doesn't seem to be parsing firewall logs
I'm trying to send OPNsense (fork of PFsense) firewall logs to the analyzer. However the analyzer doesn't seem to properly parse the logs as firewall logs. Such as it doesn't see the IP's or action etc of the log. It managed to pull the date pretty much.
Zyxel eventlog categories
Hello. I configured my Zyxel Zywall USG100 using this manual As a result, It works. Eventlog analyzer grab events and make report. Unfortunately, I see only 3 categories: Notice Information Alerts Other categories are empty. Also, I see a message column
System powerfailure and reboots - Alert creation on Event log analyser
Hi Community, can someone guide me on what event id must be used to track system reboots and power failures? Systems reboots on Windows servers/stations Power failure on networking syslog devices like switches. WE are on build 12.2.5.
I deleted a Windows Domain Controller from Manage Engine EventLog Analyzer Group and Now I can't seem to add it back
Dear Community, I have Configured Manage Engine and was successfully using it without any Issue. For some reason I deleted a Domain Controller from the Windows Devices and then wanted to add it back, but I can't. I am Attaching Screenshots for you Reference:
How can I Add Oracle Application/ Databse Logs to collect logs in Manage engine EvenTLog Analyzer
Dear Community, I have My Oracle Database/EBS Application & I want to Monitor it's Logs in Manage Engine EventLog Analyzer. I have already Added My Base Machine i.e. Linux Machine in ManageEngine EventLog Analyzer and Syslog Events are being Monitored
Log Collection Filter in ManageEngine EventLog Analyzer
Dear Community, I have Added Windows Devices and Syslog Devices in Manage Engine EventLog Analyzer. But all the Logs are being scanned. Instaed, i only specific weinwos security logs to be scanned (4720 i.e. new user creation ,4724 i.e. Password reset
Cisco WLC
Is anyone monitoring a Cisco WLC (9800 and 5520 in my case) with EventLog Analyzer? We arent getting any real actionable data from the syslog or traps with the built-in reports.
Custom Log Parser no longer available?
Quick question, how do we create custom patterns for log parsing in the current version? I am directed to the search tab (see screenshot) which doesn't seem to offer that functionality. My experience does not match up with what is in the product docs: https://www.manageengine.com/products/eventlog/help/StandaloneManagedServer-UserGuide/AdminSettings/custom-patterns.html
SSL Syslog via NXLog Issues
Hi there, We are running Log360 with ELA installed as a component. I am attempting to ship logs from a Windows device using NXLog to ELA over TLS 6514. To test, I started with UDP 514 which were successfully received by ELA. Next TCP 514, which was
How to ensure network device keep sending logs to ELA server?
Hi Team, Please answer below question. How to ensure network device keep sending logs to ELA server? How to setup alert if network device did not send logs to ELA server for more than a month? Thanks, Leo
Event Log Analzyer Dashboard Graph Customizations
Hello everyone, Is there anyway to customize the bar graph for example by highlighting a specific bar with a different color based on a a variable? Thank you
updatemanager reports ELA is running - can't update!
"EventLog Analyzer is running. Please ensure that EventLog Analyzer Server is shutdown before applying the Service Pack." I've stopped the service, run shutdown.bat,stopdb.bat,stopsec.bat. updatemanager still says the line above. I had an issue a
Changing Default location for checking for software
Is there a way to change the default location for checking software from C:\Program Files (x86) to another location ? Since i want to install a software to another directory when trying to deploy a software update I am getting an error message from
Log4j Vulnerabilities Workaround: Steps to protect EventLog Analyzer (Version 12146 and above)
This post has been updated on 17/12/2021. Dear Folks, Three high severity vulnerabilities, (CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105), impacting Log4j utility, were disclosed recently. We have found no evidence of any successful exploitation
eventlog analyzer\server\tmp folder has millions of files
I was looking at where space was being taken up, and found that this folder has 23 million files and consuming 180GB. What is the purpose of this folder and can I simply delete these files?
Windows Forwarded Events
Just wanted to see if there's an update to this? I see a lot of other notifications, but even though I check Forwarded Events on the devices it doesn't show up. From previous post two years ago it did say it was on the roadmap. Is it now available? And
Daily size report and device count
I am trying to perform some predictive analysis for store requirements given the daily ingress and number of devices. In my previous SIEM, I was able to generate a report that gave me avg data per device, and I was able to multiply that by the number
Log4j Vulnerability: Workaround steps to protect EventLog Analyzer (For Versions Below 12146)
This post has been updated on 21/12/2021 Dear users, Two high severity vulnerabilities, (CVE-2021-44228 and CVE-2021-45046), impacting Log4j utility, were disclosed recently. We have found no evidence of any successful exploitation in EventLog Analyzer
Failed to update IP geolocation data.
Hello, Received a notification stating "Failed to update IP geolocation data due to network issues." Since then I added a new rule to my firewall to allow access to creator.zoho.com, which currently is directed to 204.141.42.107 QUESTIONS: 1. is this
How to backup configuration and restore?
Hi Sir, Can I ask you a question. I have an ELA test server. I want to reinstall the ELA software from c:\ to d:\ drive. Can you teach me how to backup and restore configuration? I don’t need to keep event logs. Test reason: Because my test server c:\
Have Reports Emailed Directly as PDF (No Zip File) Current Version
Is there anyway to have reports emailed as PDF attachments rather than ZIP files? This has been answered in the past, but answers are years old and do not appear to apply any longer. Thanks
MS SQL User Audit Reports
I apologize if I missed something obvious. The historic reports regarding changes to user permissions are great. Is there a way to generate a report per user of what permissions the user has? This report would involve server roles, database roles, object
Next Page