Testing of alert Triggers
Hi, Is there a way that i can test an Alert that i have configured in ELA to ensure it is working. For example i have an alert set that if a specific line is received via syslog for a Core Router, then i want ELA to send a email alert message, because i cannot get the device to recreate the log entry without actually preforming the event , i want to know if there is a way that i can send a dummy event to ELA and see if it triggers the Alert. Any help would be appricated. Cheers, RH
Windows Server 2008 Backup Operational Logs
Hi All How we can forward Application server logs,
NPS report
Dear DEV , EventLog Analyzer have support Network Policy Server (NPS) log , it's very useful . I hope it's soon support Network Policy Server (NPS) . Thanks
The Object exporter specified was not found
Good day, We are evaling the the EventLog Analyzer. When we try to add a new Windows 2K Pro Host and put in: Host Name: IP.IP.IP.IP Login Name: administrator Password ********* Then we choose: Verify Login, it then displays the error. Thanks Mandy
How can I change backend database to my mssql server
I've install evenlogmanager for windows x64,the default database is mysql.How can I change backend database to my mssql server,such as 192.168.0.22 user sa,passwd 12345 Thank you !
Delete domain name !
Dear support , I was testing Eventlog Analyzer . I'm using import user from domain for logon , with 2 times import ( 1 for ABC and for ABC.com ) , and when logon , i have 2 domain . Plz help to delete domain . Thanks
Reuse file from old installation
I've installed log analyzer sp1. After a few day the server crash. I need to read the file from old installation. i've the manage engine folder. I've try too installa the software in a new server and copy the ms-sql db to this new installation but the event log crash. There is a way to read this file?
e-mail notification, when user account locked-out
Hallo, My problem is that we set a security policy in a windows environment. If the user failed logon for five times the user account will be locked out. A locked-out account cannot be used until is reset by an administrator. It is possible to get an e-mail notification, when this event happens?
Importing ISA logs..?
Hi. My questions is.... Is that possible to import ISA 2006 firewall and web proxy logs to Log Analyzer and how? I successfuly managed to get dhcp and ISA system logs but unable to find ISA option in the log types (WC3 IIS-DHCP...)
PDF Report Maxes Out at 85 Pages
Today two of my reports that I received via email stopped reporting after 85 pages. The reports are sent as a PDF and did not contain all of the event logs. For instance it would display the logs from 1/18/2011 between 10am and 11:59pm, but the reports from midnight to 10am were missing, since the report stopped after 85 pages. Is there a way to change this? Our reports do not hit this size often but when it does I have to go back to our old way of viewing events to catch the events that were missed.
Trying to generate a report listing all the top Event ID's being generated for a given time range...
Hi, I'm trying to find a way to run a report and list the top Event ID's that are being reported for a given time range (i.e. previous week). Is there a way to do this with Event LogAnalyzer 6? I know I can report on the top processes that are generating the most events but we'd like to see the top Event ID's that are being generated for an environment for a given time range if possible. Maybe even be able to list hosts also that are generating the events in a clean format. This way we
EventLogAnalyzer on debian 64bit
I am trying about 7-8 hours to make EventLogAnalyzer to start, but i cant, i run debian amd64, when i press the add new host, it gives me blank screen..., also, the ./runSEC.sh needs library file phoenix:~/ManageEngine/EventLog/bin# ./runSEC.sh bin/SysEvtCol: error while loading shared libraries: libz.so.1: cannot open shared object file: No such file or directory when i link the file with phoenix:~/ManageEngine/EventLog# cd lib phoenix:~/ManageEngine/EventLog/lib# ln -s /usr/lib/libz.so.1 libz.so.1
Save Archive files on a WORM support
Hello, what's the best way if i want to "clean" the Event Log analizer folder from old archive zipped files? Can i simply move them to another folder, write them on a write once support (like a cd or dvd) and them delete them? If i want to use them again can i simply take the archives and re-import them in EventLog Analyzer with the "import log" function, right? Thanks
Creating a refined Custom report
Hello everybody I have Log Analyzer 6.0.0.0 and I need to create a custom report for Object Accesses. It should look like a the PCI or FISMA Report on Object Access, so that is clear (to an internal auditor) which object has been accessed. I want to monitor just events with EventID = 560 and I need a message filter as well, to include just log entries containing a particular string. As far as I understood, this is not possible with 6.0 Am I wrong? Did anybody else ever make a report this way? Thanks
Ubuntu Server New Install Cannot Login
The default username and password are not working. I have the latest version as of this posting. Am I missing something.
Scanning ISA Server 2004 on Small Business 2003
Hello. I have searched everywhere on the internet and these forums for an answer to my problem but I could not find one. I'm going to post it here so maybe someone will have some insight. I'm running EventLog Analyzer 4 on a Windows XP SP2 machine. I'm scanning six Windows Server 2003 R2 machines without any problems at all. When I try to scan my Windows Small Business Server 2003 machine, I get the dreaded "The RPC server is unavailable" message. Now, this server is NOT running the "Windows Firewall",
Have Reports Emailed Directly as PDF (No Zip File)
Does anyone know if there is a way to have the system email reports as the PDF directly without sending it as a ZIP file?
Is there a way to limit disk usage?
Is there a way to limit disk usage of Eventlog Analyzer? If I put the archive and database on a very large 500GB+ volume, is there a way to limit the disk usage that it will take to only 100GB? Is there some sort of automated cleanup of archives to also limit them by age? say I only wanted to keep 60 days of archives? Thanks,
EventLog Analyzer Alert mail delays
Hi, dear community participants! I use EventLog Analyzer 6, which is configured to send mail alerts after server(windows 2003) maintenance shutdown. The issue is that some emails arrive in time and some of them arrive with day, 2 days and even 3 days delay, even when events occurred with 10-15 minutes interval. Any ideas about reason?
Fix for newer mysql versions
Hello, I'm trying to switch to a newer version of MySQL for the following reasons: Much improved performance (2-3x as many hosts without bogging down the server in my case) and the option for compressed log archives. I wish to have a single version of MySQL for all services on the server, rather than multiple databases (terrible performance) or suffering an older version (4.17 in EA's case). In fact InnoDB would be faster than MyISAM for all tables in the newer version (it's now the default). However,
Uniform search UI and add export as pdf, CSV in search results
Hello It would be great if you could add in any search type (fast from home page or advanced etc) the possibility to choose how many records for page, now it is only 10 in the quick search from the homepage and also the possibility to export as PDF or CSV as now it is not possible, yo have to save the search as report first which is quite of a nuisance. I think it is extremely easy to do and it really simplify the usage of the tool making the UI searches all consistent Thanks Saverio
Cherry MySQL ODBC 3.51 Driver
Hi All, Good Day!! I have installed the Eventlog Analyzer on a 64 bit Windows 2008 Entp Server. When trying to run the app from bin\runSEC it gives an error as below Error: Invalid root in registry key "HKML\Software\Wow6432Node\ODBC\ODBCINST.INI\Cherry MYSQL ODBC 3.51 Driver\ Code: 80070005 Has any one come across this error? Any Help is Appreciated Kind Regards Sobash.
how reset admin password ManageEngine eventlog 6
how reset admin password ManageEngine eventlog 6
Automate the addition of hosts?
Hello, Please can you advise whether there is some way that Windows server hosts can be automatically added to EventLog Analyzer rather than being manually added? I know there is a facility to add user accounts which can then be setup as EventLog Analyzer users but we would be interested in a similar function whereby server objects (which could be located in a specific OU) could be imported automatically. Then if the application could poll the OU at regular intervals additional devices could
Monthly sumamry of logons, logoffs daywise - with graph
Hi, I need to provide monthly details on daywise data for certain type of events e.g. logons and logoffs with a line graph to check any variations. Data should be like: Day Logons Logoffs Login attempts passwords locked Nov 1 3232 34343 345434 453 Nov 2 3444 11343 345134 453 Nov 3 53453 45353 34534 345 ..... ...... ...... ...... .....
Custom Report with Single Quote in Log Message
I would like to create a custom report with single quote in the Log Message. However, the system prompted to remove single quote in the Log Message. I have tried adding a back slash in front of the quote but still the system does not allow the report creation. See image below. Please advise how to get pass the single quote issue.
report: only summary or details problem
when i create a report, i can select "summary and details" or "only summary" that the reports are equal. i user 6.2 version
wrong name for source
when i am filtering the data, the source name which should be broswer shows as bowser. it doesn't look professional. can you let me know where to change it. version is 6.0 build 6020.
Total number of events per second
I am using Event Log Analyzer 6.0 build 6010 with MySQL I need to do capacity planning for adding more hosts. The best practices documentation says that with MySQL, I can have 300events/second with max 200 hosts. Thus I want to see events per second in real time as well as historical trend of events per second. I have already tried historical trend and hour-wise trend report. It doesn't give me the events/sec as well as historical events per second for whole system. Could you help asap? My server
Advanced Search option for reporting
Can't use Advanced Search for reporting. when I click go and then click on advanced search, all things mentioned don't come up. Can you help in letting me know where the Advanced Search sub tab is? Thanks Jatinder
limitation on number of events per second and hosts
Hi, I want to know the limitation of events per second and hosts in Event Log Analyzer 6.0 build 6020 with MySQL as backend? My server is Xeon 3GHz with 3.5 GB RAM on Windows 2003 SP2. If I increase the RAM to 16 GB, would it make any difference? What would be the effect of changing backend to MS SQL? thanks Jatinder
Event log analyser
Hi, I am trialing the Event log analyser software. When i click on a server and select successful user logsins, the occurence does not always match the number of records in the report. Do you know why ? Thanks, Ian
I would like to move the application to a new server.
What are the correct steps to migrate the data from the old server to the new?
Event log analyzer - Unclean shutdown of previous run
When I try to start ManageEngine ELA service, it stops and on command promot, it shows the error " Unclean shutdown of previous run" . I have uploaded the log and err file to your website in directory dsl20101111. Please advise asap. thanks Jatinder
Report is being generated Message Box
It looks like I have a similar issue with the mysql DB. The report is being generated message box appears but never completes. I will send a diag file for you to look at Thanks Mark
NIST 800-53 AU-5 RESPONSE TO AUDIT PROCESSING FAILURES
What's available in Eventlog Analyzer to at least alert me that my event log file is near capacity or not logging events at all?
MySQL Root password change
I am on build 6010. I need to change the MySQL DB password. what are the instructions to do that? When we will be going to build 6020 or above later, would we have a different set of instructions?
ManageEngine® EventLog Analyzer 6.2 Released
ManageEngine® EventLog Analyzer 6.2 Released We are glad to announce the release of ManageEngine EventLog Analyzer 6.2 (GA) Distributed Edition and Standalone Edition. Download Distributed Edition Standalone Edition Read More What's new in this release? 6.2.0 - Build 6020 The general features available in this release include all the features of EventLog Analyzer Version 6.1.0 Build 6010 and Features: Reports for FISMA Compliance Controls Enhanced usability of Compliance reports with fresh look
Alerts generated emails are delayed for several hours before being sent.
Event log Analyzer is setup to monitor the Windows Application event log on 3 servers. I have created alerts to send emails about the backups running on the servers. The Logs appear on the Analyzer at the same time they're recorded on the servers. But the Alerts do not send the email for several hours. I have attached an example email showing the difference in time; the log appeared at 00:47 - but the email wasn't sent for nearly 21hours! The PC running analyzer is on the same domain as the
No data for successful user logons ,log offf,,,,,,,,,
details below Successful User Logons 0 Successful User Logoffs 0 Unsuccessful User Logons 0 Audit Logs Cleared 0 Audit Policy Changed 0 User Account Changes 0 Locked User Accounts 0 SceCli Group Policy 0
Next Page
