I want to bring the log file in the Unix before setting ELA.
dear support-team. I want to bring the log file in the Unix before setting ELA. that is, I want to bring the log file to do the backup from the Unix to ELA. possible? also, Windows is possible? How to? Thank you in advance for help. Ko Young Suk Telemant corp.
Is there a setting to have the main page refresh in EventLog
Dear support-team. Is there a setting to have the main page refresh in EventLog Analyzer? I can do a manul refrsh and the counters increment but it would be nice to have that page refresh every 1 min automatically. i want to solution. Thanks in advance for help. Ko Young Suk Telemant Corp.
Help..database too big
I am new to eventlog Analyzer 5, but, I installed this a few months ago to capture logs on my Domain Controllers. I looked today, and the myssql\data\eventlog folder has grown to 95 Gig! I then realized the current storage size was set to 365 days and I was capturing all events including informational/success event. So, I turned those off and set the size to 15 Days. My Archive folder is only 2 Gig. How can I shrink or get rid of the eventlog folder and get it to a reasonable size. I have to believe
is the event analyzer support site to site
hello is the event analyzer support site to site ,i meen if i can check another network that i have to here site to site
Sending reports with zipping it
Hi, all! I'm using Event Log Analyzer 5. I created the report schedule. But attachment file didn't come to me. Because file was too large. And I want to receive the zipped report file. But I don't know where is configuration file? How to config? Thank you! Cheers, Erdenejargal
send zipped report from Event Log Analyzer
Hi, all! I created the report Schedule in Event Log Analyzer. But I cannot receive the report. Because pdf report file is too large. And I want to receive the report file that is zipped. But I couldn't find the configuration. thank you! Cheers, Erelchin
Unable to find "IIS W3C Web Server Logs" Import Lo
Dear Members, I was wondering whether you have similar issues in the past. We made attempts to import IIS log files from our web server and it looks like it is working (i.e. From Home tab > Applications sub Tab) I am able to see the link for Application Type �IIS W3C Web Server Logs� (as shown in Application_IIS W3C Web Server Logs.JPG). I would like to review the configuration for this IIS Web log profile however when I go to Settings tab > Imported Log Files, all I can see is �MSSQL Server Logs�
Admin Password Reset
Can I get the password reset procedures for the admin account on EventLog Analyzer? Thanks.
Cisco AIP-SSM-20 IPS
Can you tell me if Event Log Analyser will be able to collect logs from the above module for the Cisco ASA? Module: AIP-SSM-20 IPS Thanks, JP
Sending reports without zipping it
The reports I have generated send the attachment as a .zip file containing a .pdf file. It is possible to send the e-mail without zipping it?
C:\AdventNet\ME\EventLog\mysql\data\eventlog
This folder is 18gigs in size- anyway to shrink it down?
No data available when report filters used
I'm having trouble filtering specific log data from my reports. I am specifying one server only. When I choose to view all logs, the report generates correctly with many pages of data. When I uncheck the column 'Information' however, the same report does not return any data at all, even although there are several error and other types of entry that I should see. Am I doing something wrong? Many Thanks Stuart
E-mail notification
Hallo, I have a question. It is possible to generate an e-mail notification, if an user in a windows domain trys to logon several time with a wrong password?
Pulling old log info after long down time
So, our system was busted for about a month. I got it up and running and again and want EventLog Analyzer to scan and ingest all the log info available on each host. The servers are set to retain event log info for 60 days. I go to settings.... host details... and run scan now... but that only seems to poll todays data.
IIS Web Logs
We are currently evaluating EventLog Analyser however we cannot find where to access the IIS Web Logs on a remote server, looking in the user guide it says that you use the left pane to navigate to the application log reports and then import a log file, however there is no application section in the left navigation pane. Is there another way to get the logs? We have looked at just importing a file but there does not appear to be an option for IIS Logs the only windows logs appear to be .evt files
Alert
I set up an alert, and use an exclude "duplex mismatch" in the "log message contains" field. If I run a report that looks for "duplex mismatch" will I get any information back? Or will the exclude statement int the alert block this information from the reporting function?
MYSQL error. ../mysql/\bin\mysqld-nt: Can't open file: 'com
I am getting this error after running out of disk space. Any ideas? Thanks ../mysql/\bin\mysqld-nt: Can't open file: 'comp_eventlog_hr_trend.ibd' (errno: 1)
I failed add on Linux.
Dear support-teams. I failed to add Linux. I as follows at Linux. 1. edit the syslog.conf file in the /etc directory. - *.* @192.168.10.12 (this is ELA server.) 2. edit the service file in the /etc directory. - change syslog service port number to 514. 3. restart the syslog service - /etc/rc.d/init.d/syslog restart I add Linux at ELA server. I attached jpg.file thank you in advance. Ko Young Suk Telemant Corp.
error message "access denied", so i attached ppt f
Dear support-teams. I attached ppt file. I want solution. please. thank you in advance. Ko Young Suk Telemant Corp.
I think, WMI problem....
Deam Support-teams. I success at remote host. (OS:Windows 2000 Server) and I run WMI, I confirm in OpManager However, I not operate at winxp_pro. and I run WMI service at services.msc The result to use OpManager failed. (I found that failed WMI service) so, I want to run normally WMI service. Do you have the method? thank you in advance. Ko Young Suk Telemant Corp.
I found that error message "Access Denied"
Dear support-teams. We testing eventLog Analyzer. We found that error message "Access Denied". Then, I run as follow. 1. firewall disable. 2. run RPC at Services.msc 2. netsh firewall set service type=REMOTEADMIN mode=ENABLE profile=all but, I not successsed. I want solution. Thank you in advance. Ko Young Suk Telemant Corp.
I fount that error message "RPC server unavailable"
Dear support-teams. I failed as follow. Local Host : 192.168.10.12, EventLog Analyzer Server Remote Host : 192.168.10.5, We are the host to collect the log. - machine_name : YSKO-PC - domain_name : WORKGROUP - user_name : ysko - password : 12345 We run as follows in wbemtest of the localhost. 1. Type "wbemtest" in the text box and click OK 2. In the WMIT window that opens, click Connect 3. In the Namespace text box, enter \\YSKO-PC\root\cimv2 4. In the User text box, enter YSKO-PC/WORKGROUP\ysko
no display dashboard.
Dear support-teams. Must I install the syslog-ng in Linux? And, We added the host-name to use the eventLog of the windows. But, We do not appear in the dashboard. Do I have the thing to set at the windows? We want solution. thank you in advance. Ko Young Suk Telemant Corp.
I do not know a remote host add way.
OS : windows XP Pro Local host ip : 192.168.10.12 We succeeded in local host. And, Remote host Ip : 192.168.10.5 We add a remote host. But, I do not know a remote host add method. I want solution. I attached doc.file to the e-mail. Thank you in advance. Ko young Suk Telemant Corp.
I fount that remote host ip error message.
Dear support-team. Remote Host IP : 192.168.10.5 but, a host ip is 222.239.74.182 at picture. I do not know the reason. I want solution. Thank you in advance. Ko Young Suk Telemant Corp.
Missing Events in personal Reports
Hi, in our daily report send by mail are some events missing. When we take a look at the report manually the events were shown correctly. Something we can try to correct this failure? Thanks
Best Practice for Clearing Event Logs
I am in the process of evaluating the software and had a question in regards to how the PC event logs are cleared. Are they cleared or does this manually have to be done? Right now, I'm getting an error that my test server has a full security log. Thanks,
Bandwith impact
we have several domain controllers nationwide. I am curious as to how this would impact out network if we were to monitor domain controller outside of out LAN. What are the bandwidth requirements/usage from this product. I am also curious as to how the event log analyzer is able to pull the events from the server.
time on last scan is not same time zone as computer\vista.
In EventLog shows wrong time (zone) where last scans of clients are listed. It does not match the system's time. Approx 4 hours ahead of EST.??? Also my EventLog has once again stopped collecting data? How do you repair the MYSQL database? How do I know why it stopped? Where is database pack\repair icon in Settings?
Minimun permissions service account
Hi, First of all I'd like to say that Eventlog Analyzer is a great product. I'm currently using Eventlog Analyzer to monitor several domain controllers and member servers in our domain. And everything is working perfectly. However the service account is currently a member of the domain admins group, which is something we'd rather not have. Making the service account a local would be acceptable, but this is not a solution for the domain controllers (they don't have any local acconts). What are the
DB size and purging
I have my DB set to keep 31 days of data. However even though we are past 31 days in the cycle my DB continues to grow very large. I need to purge some data. Do you have the commands to do this? Thanks
Online Data
Can anyone tell me how much 'live' data can be available on Event Log Analyser. For PCI compliance we need to be able to go back over a minimum of 3 months data at any time. So if I run report or try to drill down within a small time frame 2 months or so in the past will it have this data available. Is there a way to set how much data is available at any one time?
Best practice Backup procedure
For DR purposes what is the best practice for backing up EVA in the event of a catastrophe? I would like to be able to install EVA with existing configuration/database on alternate hardware in a timely fashion without skipping a beat.
Member of more then one group
I am still evaluating eventlog analyzer and we are liking what we see so far. I have another question that has come up. Can a host be a member of more then one host group? I ask because we are thinking of ways to use the groups and can forsee a host needing to be a member of more then one. Thanks for your reply.
Export Alerts/Reports
Hi, Is there a way to move Alert Profiles and reports to another ELA server on a seperate network? Many Thanks
Editing Reports and Dashboards
we are currently evaluating the product and I have a couple of questions 1) is it possible to edit "my reports" or do I have do delete and recreate with my changes? 2)How can I get reports that are emailed to just email the pdf and not the zip? 3) Can I have different dashboards for different users? 4) (I know its not available but want to mention again anyway) will it be possible in the future to do ldap or active directory authentication? 5)as a prospective customer, what is the release cycle for
Manually force polling/scan of all servers
Is there a way to force eventlog analyzer to poll all servers that have been setup? I know you can go to each server and click the scan button but wit a lot of servers this takes a little time to go through.
Clearing Alerts
Is there anyway to clear alerts in the alerts section. I would like the application to only show alerts of the issues I have not dealt with. So if I receive an email alert I can login and 'approve' or 'clear' the alert?
Built-in reports no longer being populated
Our built-in reports such as Top Users by Login and Top Interactive Login are showing up blank for any day after March 6th... What's the problem?
Database filters take precedence or what?
I've created an alert profile to notify me of any/all critical event log entries on a group of hosts. In addition to this I have identified a subset of critical event ID's that I do not wish to be notified about. So under Settings -> Database Filters I created a filter to drop those specific event ID's. Several days later I am still receiving alerts (sometimes hundreds a day) for the supposedly filtered events. Why does this occur and how do I fix it? Thank you.
Next Page