Problem of starting service eventlog
i have an issue when i started the service of eventlog analyzer on windows 7 32 bits the service stopped automatically so could you help me to resolve this issue Regards
Problem starting EventLog Analyzer on Windows XP
Hello, I've trouble experience during start the first time. I get "Previous start failed. Please, Reinitialize DB and restart server. Problem while Starting Server. System halted", after that the service change its state to stopped. Also I tried to restart Windows, but the problem still yet! How can I do to solve that problem? Thanks in advance!
Event filtering
Im wondering if there is a way to do this or if this a planned feature. Basically what I would like to do is in the case of say, failed logins, I want to see if I have 5 failed logins in 15 minutes, but I would like to see this only if all 5 are from the same user. I don't see any option to do this currently. Am I missing this or is this not possible currently?
Rollover icons need better triggering
The icons that pop up when you roll over various items are entirely too small, for example, the alert icons are so tiny you have to pinpoint the graphic exactly in order for it to trigger. This is the same for the icons in the host section as well. These icons are incredibly small and require far too much precision to be able to click on easily. please make either the detection around the icon larger, or just make the icon itself larger to enable easier clicking.
problem of display windows log
Hi I cant understand the content of eventlog windows caracters are emereged as the tiles the windows log display in eventlog analyzer is in french see below other thant that if i want to extract field i can change the field value still ignore Regards
Change MSSQL credentials
Hello guys, I'm currently using Eventlog Analyzer with MS SQL. I'm using SQL authentication mode to authenticate to the SQL server now. Is it possible to change the SQL authentication to Windows authentication (use a domain account instead of a SQL local account) to authenticate to the server? Regards, Harvey
Filtering on logon type
Need to create reports and alerts for succesful Windows logons, filtering out specific logon types. Specifically only want to see successful logon (event id 528 & 540) for user 'administrator' for logon type 2 (Interactive) and logon type 10 (RemoteInteractive). Can you suggest the best approach?
X:\Manageengine\EventLog\server\default\indexes\univindexes\hot folder is growing FAST
Im currently collecting logs from 48 windows servers and 2 syslog devices using this version: Build Version : 8.5 Build Number : 8051 Service Pack : - Database : POSTGRES Build Date : Apr_25 Build Type : 64bit Language of Installation : English In 5 days the folder has grown to 114GB. PCI requires 90 days of log available at ALL times. In order to maintain this amount of data it would require 2.0TB. I need to understand is this growth is an issue or something I can expect.
bin/SysEvtCol: free(): invalid pointer: 0x09038548 ***
Hello, I'm curretnly reviewing differents log parsing solution, your solution looks good but I can't manage to make it work. Your internal syslog daemon seems to crash. When i use the init.d script everything looks fine but the SysEvtCol is not started. When i use the run.sh script i have the following error : *** glibc detected *** bin/SysEvtCol: free(): invalid pointer: 0x09038548 *** If i execute runSEC.sh i have the same error : ./runSEC.sh -loglevel Loglevel for Event Analyzer data collector
Exception in thread "main" java.lang.NoClassDefFoundError: com/adventnet/mfw/Bac kupDB
I'm trying to run the backup, but I'm not getting this error message appears: Exception in thread "main" java.lang.NoClassDefFoundError: com / AdventNet / mfw / BackupDB Tiago Toledo - Bigode Blog: http://www.pastelariadigital.com.br
Add agent less Windows host ok but cannot collect event
when add agent less windows host it add successfully but no event collected and whwn hit scan now it is failed with access denied error it search in logs and find this error Windows based Host MESSENGER : Scheduled for DC for interval c314f7 10 Inside RunWMIOnce ... Inside RunWMIOnce ...0 Assigning RUNNOW thread 0 to host MESSENGER for WMI poll Event collection started for host MESSENGER at thread 903 Log collection started for Host : MESSENGER Query Fails, Error fetching win version 80070005
How to import multiple log files from remote host
Hi, i have to import Oracle .aud logs file from a remote host via SSH. I have multiple files because Oracle create a file for each process, all in the format aud_* (the * indicates the process ID). how can i import all logfiles? I have to set a correct name-changing pattern? and how can i schedule my import? thanks a lot Andrea
Windows 2012
We seem to be having problems enabling the event log analyzer to connect to a new Windows 2012 server box. The system is working fine connecting to 2003 and 2008 boxes. The error code being received is 80070005 access is denied. If I look at the events on the 2012 box I can see a successful login is carried out followed by a log off straight after event-id 4624 and 4634. I have checked the firewall logs and there doesn't appear to be anything blocked. Andrew
Update to build 8050 and lost icon device
I upgrade build 8000 to 8050. But i lost the logo device. I had created a new logo for my switches and when i update lost these new logo and the default cisco_logo and unix_logo are lost too. I donk know, what is the issue ? let me know anything, Miguel
Intervale Time not refresh Automatically
In Dashboard/Hosts/Applications View the Interval Time not refresh. I must select last day, last 24hour or something in order to refresh to real time. Why ?? If i press F5 to refresh my browser the time no update Please let me know anything Regards Miguel
How to search Event logs using basic command Logon type =3 BUT no username
Hello, Real Quick how to search in the search field using basic commands: logontype =3 but dont want to display Event.log.analyzer username what will be the next sentax.
How do I setup alerts on FIM?
I've setup FIM successfully. In order to pass PCI requirements I will need to receive alerts. How do I setup those alerts?
Import HP-UX server logs
I can not import logs from Unix servers (HP-UX) with Event Log 8.5. I have a messega " Not available" I sent my reports and configuration information from my servers, in specific the files "syslog.conf" and "services", both files are in /etc folder. But i have not received answer. Thank you
EventLog Analyzer 8.5 build 8051 AD authentication is failing.
Build Version : 8.5 Build Number : 8051 Service Pack : - Database : POSTGRES Build Date : Apr_25 Build Type : 64bit Language of Installation : English Local auth works fine.
ELA to monitor Oracle Logs
I would like to know how I can Configure ELA to monitor Oracle running on a windows box. I have added the Windows host to ELA and it is pulling the events from the box how do i also include the oracle logs. thanks
Broken after Windows upgrade
I upgraded to 8.5 on Windows, and the service failed to start. I was able to start the app from the shortcut. I uninstalled the update, and now I can't even start the updatemanager to reinstall the update. Can I reinstall the entire 8.5 and have it recognize my license, or do I need to start reinstalling from my old version and add all the patches again?
Is it posible to capture all windows event logs from computers?
Hi. As far as I know event log analyzer only collects the computer event logs for the current date that the system is working on. Just want to know if there is possible to collect all event logs from computers. Let´s say all events logs in computer from the time it was installed windows. if the computers is 3 years old then capture all event logs from 3 years ago up to now. thanks in advance for your help Roger
Is there an option to migrate existing Eventlog Analyzer from built in database to MS-SQL
Our eventlog manager installation has outgrown the drive it is on. We would like to migrate the installation to a new drive. We were thinking that now would be the time to migrate to MS-SQL since we are primarily an MS SQL shop. Is it possible to migrate an existing installation over to MS SQL? If not, is it possible to migrate an existing installation over the a new drive?
can't add host due to permission error
I have tow windows domain controller servers,due to company security policy,I don't want to give administrators group permision to monitor team,when I assign backup operators group permission,it will show access is denied error.but follow the errorr log, I can use backup opearators group to access admin$ and c$,so the path is correct.Iwhen i give them administratos group,everything is fine. want to know what kind permission that need.
A security package specific error occurred. 0x80070721
Hi All, Has Any one come across the above error message when trying to add or edit a host. This error is coming only for one host. The host is a windows 2003 server and the EventLog Analyzer is running on a Windows 2003 server. Eventlog Analyzer is ver 7 and x64 bit. Thanking you Rg Palcops
EventLog Analyzer Stops collect events
Hello. Such problem occurs. EventLog Analyzer periodically stops collect events. About one time in two days. This always happens at night time, never in work hours. At the evening all works normal, I close web console, logout from server and at the morning I see, that there are 0 events on all servers for this day. Server starts collect events again only after I restart service. At the same time syslog works all time normal. EventLog Analyzer works like windows service. I tried set setting of service
ELA & FWA Encrypt and timestamp?
In the ELA and FWA there is an option to encrypt and timestamp the archived log files. Before I encrypt these, where would I find the information (key/password) to decrypt the archive log files or am I prompted to enter one when I select encrypt? What is the purpose of the timestamp option? Does it timestamp each log entry or the entire log archive? Thanks.
Broke after Windows Update
Hi, we have an Event Log Analyzer 7 system that I inherited only yesterday. I was able to log in yesterday to add a DC to the hosts and that seemed to work. Today I caught the Windows 2008 R2 OS up on the Microsoft Patches. After the reboot sometimes I can log in to Event log Analyzer, mostly I cannot. The screen is blank with just the hour glass. If I am able to get in I can get to some screens like settings but other ones like reporting will also just give me just the hourglass in Internet Explorer.
Move EVA pgsql DB to alternate location?
Has anyone successfully relocated the pgsql DB to an alternate drive\path on their server? I'm attempting to do so on a new server / install of EVA 8. I followed the procedures as outlined in: http://www.manageengine.com/products/eventlog/help/additional-utilities/move-database-different-directory.html#MovingPostgreSQLDatabase After following the proceedure above, the EVA service fails to start. Thanks!
Server Status - Failed
Trying to start EventLogAnalyser Server satus shows: Server Name : logakt1 Server IP : 127.0.0.1 Listening Port(s) : - Note:- Default Listening Port 513 has already been occupied . So add a new port to listen for event logs. Failed Port(s) : - Server Status : Failedbut netstat -aon shows [root@logakt1 opt]# netstat -aon Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State Timer tcp 0 0 0.0.0.0:56872
alert mail eventlog analyzer 8.5 and message field
Hi, i have upgraded to eventlog analyzer 8.5 and the alert mails which are send contains in message field on every line tag '<br/>' Is this normal ? Alert mails from old version of eventlog analyzer doesn't contains such a tag. Thanks for replies.
today I see zero logs on the server console
today I see zero logs on the server console why ????
Can't import logs
I am trying to import a security log from server 2008 r2 but it won't complete successfully. I either get an error message that says error displaying log message or it just stays on in progress and the date ranges are all messed up if I don't manually specify a date range. This is running on server 2008 r2. Just downloaded the trail to try it out and had no luck so far.
Need to clear logs from Server 2008R2 as the EVL collects them or on a schedule controlled by EVL
hello all, I'm new to EVL, I have it collecting logs from each of my 60 some odd server 2008R2 servers. however I need EVL to clear the logs on these machines as they fill frequently and by company policy the servers cannot be set to clear the logs as they fill because the EVL may not have them. Can EVL do this? if so how do I do it. also, I need EVL to notify me when a specific event happens on all servers. is there a way to do this as well? does EVL have the capability to automatically disable
ELA is not showing anything under FIM
Hi, I just upgrade ELA from 8.20 to 8.50 and added my file server under FIM but it's not showing anything. I put the hostname, location (d:\share), added and deleted a few files. I reinstalled the agent I can see a green tick next to the server. Is there anything else I should do? Max
ELA 8.5 8050 Totals logs are not displaied
I was testing ELA version 8.0 build 8000 and then switch to testing new version 8.5 8050. I applied the patch and all went successfully but I noticed that after update I see only 0 logs on hosts page. When I click the last 10 logs received system is showing me the last 10 logs. When I search logs for the hosts I also can see logs, but on the Hosts page logs are not displayed for all hosts and I see on 0s. I tried to re-install new 8.5 version and connected to the existing DB ( I am using SQL server)
Eventlog Analyzer 8 reporting
Hello, We just upgraded to Event Log Analyzer 8 and when we had 7 we could see how many failures were network and how many were users. Does 8 do that also? And if it does where it is located?
ManageEngine EventLog Analyzer 8.5 - Now Available!
ManageEngine is proud to announce the availability of EventLog Analyzer 8.5 (GA) - Standalone Edition and Distributed Edition for download and evaluation (30 day trial). Fortified with File Integrity Monitoring (FIM), EventLog Analyzer 8.5 now let’s organizations monitor their critical folders and files in real time to prevent sensitive data from being compromised and to fulfill regulatory compliance requirements. Read More Top Critical Change Events Monitored in Real-time Add: Monitors for files
Loading archived files stays at In Progress
I can't for the life of me figure out how to get this thing to stop doing it. I went to import a bunch of logs to do some reporting. All well and good, the two first I selected were imported. The rest are stuck at "In Progress" after 2 days. I've done the following: - Followed the performance tuning advice - Fixed a problem with the SysEvtCol.exe process (if you're having the same problem with it failing, it's because Windows sees it as suspicious.) - Killed the process at various layers
Do I need to reinstall/reconfigure my agents after EventLog Analyzer to a new server that has a different/new IP address?
Do I need to reinstall/reconfigure my agents after EventLog Analyzer to a new server that has a different/new IP address?
Next Page
