log on as/400
Hi, I've a big problem with as/400 and eventloganalizer . i'not be able to collect any log, we get an acces denied on the web interface . Any suggestion ?
How do I create a Customizable Report for AS/400
Hi there, I would like to create a report that will provide me with the details of the users that have failed logins. This information is in the HISTORY log. Is there a way of creating reports that will pull out all information by using the AS400 Message ID's - e.g. "CPF1454" Cheers.
Move data storage.
Hello, Is there anyway i can move the data that EventLog Analyzer stores? We have an OS partition and a data partition and I would like to move where data is stored. Possible?
<device_name>_for_archive folder vs. <device_name> folder
Hello, Can someone please let me know the difference between the <device_name>_for_archive folder and the <device_name> folder? these are found in the directory where I am storing the archives for Event Log Analyzer. The reason I ask is we want to keep 6 months of archives, but evening with nearly 2 TB of dedicated disk space to this, we can only get about 4-5 months. I see that these two types of folders are the cuplrits as the zipped files are about 96% smaller due to the compression. We want
Database retention setting
Hello everybody, I'd like to store a 6 months period in the ELA DB: how can I set this retention period? Alternatively, how can I purge data older than 6 months? Thanks to whom will reply Regards Stefano
Ability to import Syslog files manually into EventLog Analyzer.
Currently, we can import only Windows Event Logs into EventLog Analyzer. We many different flovors of devices including Unix, Windows, Network Devices, etc. we need the ability to import Syslogs from almost any device.
Within EventLog Analyzer, Import folder with numerous .evt logs
My server administrators organize all archived security .evt logs into folders by domain controller. I would like to point to each folder and import the logs. Is this possible?
AD User Management
When I try to remove / delete users from the User Management screen. It just gives me the hour glass and eventually times out or I get a not responding error. Build 6001 Premium License.
Report on Link State Changes
Hello! Running EventLog Analyzer: Build Version : 6.0.0 Build Number : 6000 Service Pack : SP-6.0 Database : MYSQL Build Date : Aug_31 Today, I was in need to observe Link State Changes on a selected Cisco Catalyst 2950 switch throughout different Time Ranges. As expected, the totalled occurence of this event changed proportionally to the time range: 3 months back => 7486 occurences 2 months back => 5045 occurences 1 months back => 2487 occurences However, the detailed
AS/400 log analysis
I have added an AS/400 host Green checkmark indicates all is OK However, no data seems to be collected Plaese advise
Archvied Logs (Bulk Import)
Anyway to import my archived log files in one bulk rather than importing 1 file at a time?
SysEvtCol.exe cannot start while mysql password changed.
Since I m the first time using ELA, I have try this problem couple of days... The situation is I must change the Mysql password from default blank to something so I am using the following methods to change the password Connect to EventLog Analyzer's MySQL. Go to <EventLog Analyzer Home>/mysql directory, execute the following command ./bin/mysql -u root- h localhost-- port=33335 -D EVENTLOG Execute the following queries in the database USE mysql update user set password=password ('New Password')
Top Hosts with Failed/Success Logons Report not generating
Hello All, I am using EventLog Analyzer 5 for monitoring syslog messages of my routers. EventLog Analyzer is properly configured and it is reporting all events in real time. But problem is this that i cannot watch Success and Failure events of my routers. Second i also want to generate reports of Top Hosts with Successful Logons and Top Hosts with Failed Logons but i always shows No Data Available. Can you please explain that how i can generate these reports and how i can view Failure and Success
Not enough storage is available to complete this operation
Hello IT Gurus' I have been getting this strange error message when i am trying to add one of DC - It was working fine before - but in the last few days it was not funcationing properly - so when i tried to delete and add it again - and getting this error message .. Kindly assist We have Eventlog Analizer 6.0 Not enough storage is available to complete this operation. 0x8007000e
reporting on log collection status
Hi, is it possible either to create a custom report that emails with the status' of data collection in the last 24 hours or create an alert that alerts when a client is unreachable or access denied Thanks in advance Chris
Public viewable page without logon
We have a monitoring station that cycles through several websites, all server/app monitoring pages in our support office. Looking to see if we can get a default dashboard (say for a Guest user) view either published by ELA host on a timed basis without logon, with an auto-logon method and/or have ELA publish a view or report to an HTML file we could then allow control access via the web server to allow our script to cycle through it as well.
Wich are the best parametters for set an alert on the EventLog Analizer for Cisco Devices?
Hello everyone: I'm configuring alerts profiles in the EventLog Analizer for Cisco Devices and it is not giving me any alerts. I check the email server parameters and everything is ok. My guess is that the parameters in the alerts profiles are wrong, so i am asking for your help. Thanks.
2003Svr stops allowing ELA host to pull logs
Recently noticed one of our 2003 Srv’s stopped responding to ELA. I’m thinking this is system specific, but thought I would run by support to see if there are any other known issues other than in documentation that I could be missing. I upgraded to v6 which seems to have completed fine (thanks for the info BTW) and no change in status for this server. Verified DCOM and firewall rule as stated in trouble-shooting, all pass. From ELA Host to the problem server, I complete a net use to both C$
Problems with the hosts of the EvenLog Analizer
Hi everyone. I got a problem with the web interface of the EventLog Analizer v5, once i get ride of a number of host, they reappear again and again. Is there are another ways more radicals to do that?
User Accounts - More Control Needed.
Hi, It would be benifical if we could allocated devices to specific users ratther then a Guest or operator account. Members of our team only need to view the Syslogs from a few systems and not them all. Is there a way that this can be set? Also, is it in the pipeline to allow us rebrand ELA the same way we can in Opmanager and Device Expert ? cheers, RH
When the log collector stops?
When the log collector stops and you start it in the web...what is that link acutally doing. I'd like to write a rule or create a script to try restarting it again, instead of it waiting for me to restart it again. Thanks, Aaron
Meeting Regulatory Compliance w/EventLog Analyzer
Hi All, EventLog Analyzer is a good product and I their support is responsive. However, one area I am having difficulty addressing with the product is regulatory compliance for log integrity. Most regulations require that the integrity of logs be maintained. I was wondering if anyone could share how they are addressing this with EventLog Analyzer. Is anyone encrypting archive files and creating Hashes on them to prevent tampering? Is anyone encrypting the database? Input would be greatly appreciated
EventLog Analyzer 6 - Database filters don't works
EventLog Analyzer 6 - Database filters don't works Hi, I am testing the free version for EventLog v.6 after migrating trial version v5. The problem is that Database filters don’t works for router host (syslog type). I mean, all events are been recorded in the database, so the database is too big for my purposes. Is it a bug in the program?. The filter is “Drop the Logs containing : m=82,m=14 Match Any Match All”, and filter by “local 0, emergency, alert, critical and error”, but
Access Denied on Server 2008 box
Hi, I am having an issue where I get an access denied when connecting to the local machine that web analyzer is running on. I have tried connecting with no user name and password (because I am connecting localhost with no joy). I have run the wbemtest tool and can connect with no errors without using any login details.. When I run the query Select * from Win32_NTLogEvent from the event logs are pulled in fine. However I still get access denied from the add host screen. Please help.
Terminal Services Logging
I purchased Eventlog Analyzer for mostly for simple reporting and compliance options however I am not seeing any logon events around our Terminal Services sessions. This is the vast majority of our users and really is what we need the most auditing of is this possible with Eventlog Analyzer?
ManageEngine Announces the Availability of EventLog Analyzer 6.0 Beta Versions
The EventLog Analyzer team is happy to announce the Beta Release of the latest version 6.0 This release is yet another milestone with Enterprise Edition with distributed deployment setup for large enterprises. The Standalone version, packed with powerful features, is available. If you'd like to try the Beta Version of EventLog Analyzer 6.0 of Standalone and Enterprise Editions, please contact the support team at eventloganalyzer-support@manageengine.com The support team will provide you the download
Manual import of SNARE Syslog Files
Do you support the manual import of Syslog files from a SNARE Agent?
Firewall onto Syslogs Server on Eventlog Analyzer v5.0
Hi, I have got ASA5510 Firewall / ISA 2004 and Kerio WinRoute Firewall I have download Eventlog Analyzer v5.0 Trial Version and Installed on 3 Virtaul Server. How to i get logs from all 3 Firewall onto Syslogs Server on Eventlog Analyzer v5.0 Regards, Girish Jain
Syslog listening port (Linux)
When I run ELA on latest debian, it doesn't bind to 513 or 514 udp and instead binds to some random high port. I'm running it as root. Has anyone else experienced this?
after installing eventlog analyzer in windows 2003 (error)
Hello I want to test an eventlog analyzer may be after that I'll buy it. I have a little problem with software: 1. I am installing in windows 2003 enterprise- installation finished successful 2. after install, GUI of event log analyzer oppening normaly but when I am subbmiting login/password (admin/admin ) nothing is oppening there is white screen. (I'll check that in windows service of eventlog is starting OK) 3. I have testing in Windows XP there was normal Why? may be soft is not compatible with
ManageEngine® EventLog Analyzer 6 Released
ManageEngine® EventLog Analyzer 6 Released We are glad to announce the release of ManageEngine EventLog Analyzer 6 (GA) Distributed Edition and Standalone Edition. Download Distributed Edition Standalone Edition Read More What's new in this release? 6.0.0 - Build 6000 - Distributed Edition GA release of EventLog Analyzer Distributed Edition. New Features - Admin Server The general features available in this release include, Distribution Enterprise edition provides following view for all Managed
Report for Router logs
Hi All, I am trying to create a customer report for router logs using message filters. The message filters are for events such as %ASA-config-7, %ASA-config-5, %ASA-auth-6. I can see that these events are being logged but report that is generated has no information at all and the report is empty. How do I go about in getting this report to work? Kind Regards Sobash
ELA Novel support
Hello, is it possible to monitor Novel Server Log with EventLog Analyzer ? best Regdars
Http error when connecting to website
HTTP Status 404 - /event/index2.do -------------------------------------------------------------------------------- type Status report message /event/index2.do description The requested resource (/event/index2.do) is not available. -------------------------------------------------------------------------------- Apache Tomcat/5.0.28
Event Log Analyzer Database Filter Question
I am not sure of the proper use of the database filter in order to accomplish the following goal: filter out events with a source of Security, an Event ID of 576, and an Event Type of Success. Since the interface allows me to choose EITHER Event ID OR Event Type, it's not clear to me how I can accomplish this. Thanks for any insights.
Move ELA to a new machine
How do i move my current ELA to a new machine? I need to retain all my settings, logs etc... -Aaron
Now I use Cyberoam for firewall, ManageEngine 6.0 can analyst its log?
100,000 email messages
We have eventlog analyzer 5. I had an alert that emailed me if a disk failed. Well over the night a disk failed. In the morning I had over 100k emails. Well ok I guess it was just passing on the message that I asked it to pass on. However this bottlenecked our exchange server and my mail box so they were basically unusable for hours untill I could delete the mail and stop the event analyzer from sending the email. I see that there are settings that there are settings for Number of occurrences and
SOX Compliance Reports from Linux Server
We are evaluating the ManageEngine EventLog Analyzer for SOX Compliance. Our financial system is on a Redhat Linux server and we have set the syslog up to transmit to the EventLog Analyzer. Data is flowing into the EventLog Analyzer, but is not appearing on any of the SOX Compliance reports. We note that the help section indicates that "These reports are derived based on the Event IDs.". Does this indicate that the SOX reports can only be generated from Windows servers or are there settings
Change file type on the email attachment
is there a way to change the file type on the email attachments? I dont want the reports to come as .zip files just plain pdf's
Next Page
