I fount that error message "RPC server unavailable"
Dear support-teams. I failed as follow. Local Host : 192.168.10.12, EventLog Analyzer Server Remote Host : 192.168.10.5, We are the host to collect the log. - machine_name : YSKO-PC - domain_name : WORKGROUP - user_name : ysko - password : 12345 We run as follows in wbemtest of the localhost. 1. Type "wbemtest" in the text box and click OK 2. In the WMIT window that opens, click Connect 3. In the Namespace text box, enter \\YSKO-PC\root\cimv2 4. In the User text box, enter YSKO-PC/WORKGROUP\ysko
no display dashboard.
Dear support-teams. Must I install the syslog-ng in Linux? And, We added the host-name to use the eventLog of the windows. But, We do not appear in the dashboard. Do I have the thing to set at the windows? We want solution. thank you in advance. Ko Young Suk Telemant Corp.
I do not know a remote host add way.
OS : windows XP Pro Local host ip : 192.168.10.12 We succeeded in local host. And, Remote host Ip : 192.168.10.5 We add a remote host. But, I do not know a remote host add method. I want solution. I attached doc.file to the e-mail. Thank you in advance. Ko young Suk Telemant Corp.
I fount that remote host ip error message.
Dear support-team. Remote Host IP : 192.168.10.5 but, a host ip is 222.239.74.182 at picture. I do not know the reason. I want solution. Thank you in advance. Ko Young Suk Telemant Corp.
Missing Events in personal Reports
Hi, in our daily report send by mail are some events missing. When we take a look at the report manually the events were shown correctly. Something we can try to correct this failure? Thanks
Best Practice for Clearing Event Logs
I am in the process of evaluating the software and had a question in regards to how the PC event logs are cleared. Are they cleared or does this manually have to be done? Right now, I'm getting an error that my test server has a full security log. Thanks,
Bandwith impact
we have several domain controllers nationwide. I am curious as to how this would impact out network if we were to monitor domain controller outside of out LAN. What are the bandwidth requirements/usage from this product. I am also curious as to how the event log analyzer is able to pull the events from the server.
time on last scan is not same time zone as computer\vista.
In EventLog shows wrong time (zone) where last scans of clients are listed. It does not match the system's time. Approx 4 hours ahead of EST.??? Also my EventLog has once again stopped collecting data? How do you repair the MYSQL database? How do I know why it stopped? Where is database pack\repair icon in Settings?
Minimun permissions service account
Hi, First of all I'd like to say that Eventlog Analyzer is a great product. I'm currently using Eventlog Analyzer to monitor several domain controllers and member servers in our domain. And everything is working perfectly. However the service account is currently a member of the domain admins group, which is something we'd rather not have. Making the service account a local would be acceptable, but this is not a solution for the domain controllers (they don't have any local acconts). What are the
DB size and purging
I have my DB set to keep 31 days of data. However even though we are past 31 days in the cycle my DB continues to grow very large. I need to purge some data. Do you have the commands to do this? Thanks
Online Data
Can anyone tell me how much 'live' data can be available on Event Log Analyser. For PCI compliance we need to be able to go back over a minimum of 3 months data at any time. So if I run report or try to drill down within a small time frame 2 months or so in the past will it have this data available. Is there a way to set how much data is available at any one time?
Best practice Backup procedure
For DR purposes what is the best practice for backing up EVA in the event of a catastrophe? I would like to be able to install EVA with existing configuration/database on alternate hardware in a timely fashion without skipping a beat.
Member of more then one group
I am still evaluating eventlog analyzer and we are liking what we see so far. I have another question that has come up. Can a host be a member of more then one host group? I ask because we are thinking of ways to use the groups and can forsee a host needing to be a member of more then one. Thanks for your reply.
Export Alerts/Reports
Hi, Is there a way to move Alert Profiles and reports to another ELA server on a seperate network? Many Thanks
Editing Reports and Dashboards
we are currently evaluating the product and I have a couple of questions 1) is it possible to edit "my reports" or do I have do delete and recreate with my changes? 2)How can I get reports that are emailed to just email the pdf and not the zip? 3) Can I have different dashboards for different users? 4) (I know its not available but want to mention again anyway) will it be possible in the future to do ldap or active directory authentication? 5)as a prospective customer, what is the release cycle for
Manually force polling/scan of all servers
Is there a way to force eventlog analyzer to poll all servers that have been setup? I know you can go to each server and click the scan button but wit a lot of servers this takes a little time to go through.
Clearing Alerts
Is there anyway to clear alerts in the alerts section. I would like the application to only show alerts of the issues I have not dealt with. So if I receive an email alert I can login and 'approve' or 'clear' the alert?
Built-in reports no longer being populated
Our built-in reports such as Top Users by Login and Top Interactive Login are showing up blank for any day after March 6th... What's the problem?
Database filters take precedence or what?
I've created an alert profile to notify me of any/all critical event log entries on a group of hosts. In addition to this I have identified a subset of critical event ID's that I do not wish to be notified about. So under Settings -> Database Filters I created a filter to drop those specific event ID's. Several days later I am still receiving alerts (sometimes hundreds a day) for the supposedly filtered events. Why does this occur and how do I fix it? Thank you.
Upgrade to release 5 now alerts are not working
I upgrade version 4 to release 5 and now alerts or not working? Any know issue when upgrading from release 4 to 5?
MySQL Administrator
Hello, How do I connect to the EventLog Mysql instance using MySQL tools? I need to extract some custom data using Query Builder. The default port looks to be changed to 33335 but I don't know the admin password. Thanks
Alarms not being created, please help
Hi I'm using free version and alarms are not working. I have 5 servers and the dashboard shows the information about errors and warnings but I configured several simple alarms and it never generates one. I tried looking at the Syslog Viewer and nothing appears there ever. But Show Listen Ports detail says Server IP : 192.168.34.35 While the server IP address is 192.168.0.190 Could be that the reason why alarms are not being triggered? One simple alarm I set is the following: Select Criteria : Severity
Log file format
I am trying to read Domino web log files in the application log viewer, but when I try to import them it gives the message "Looks like the logs in the file are unsupported. Please contact support@eventloganalyzer.com for further assistance." I know the log files are in W3C Extended Common Log format, I thought that was the also the IIS format. Should this work for any webserver using the W3C format? Thanks, Gene
Some suggestions
1.Is it possible to make one host belong to several diiferent gourps 2.Maybe users can define detail time period as they like when using reporting. 'cause sometimes leaders wants to konw that. I think it is an easy way to accomplish this as you can control the sql db
Syslog files stop writing to directory.
Periodically my Syslog collector stops writing files to the archive directory. Even though Syslog is still being accepted by the server as seen in the Syslog viewer. I either have to restart the eventloganalyzer service or reset the log collector. No errors in the event log. It just stops. It appears to happen when the archive process is kicked off. I do not want to have to write a script to restart the eventloganalyzer service hourly to resolve this. Thanks in advance.
Can it send Interface description in alert message for Cisco
Hi, I have added Cisco switches in eventloganalyzer and i want interface description with original message in email alert.Is it possible to customize this tool accordingaly.'' Vibhor
How to use arguments in alert profile
How do you use the arguments field when defining an alert profile? Can vbscript be used? If so, can you provide an example of both the command line and the declarations/variables within the script to use the arguments? Thanks!
Change e-mail Body of alerts
Hello, Is it possible to change the e-mail body of the alert's. The standard used in EventLog Analyzer 4 build 4030 is: Host: Application : Time Generated : Criticality : Number of Occurances : Message : The objective is to change at least the order of the appearance, because when I send the alert using sms, the sms 160 characters limitation cut off the message. For example: Host: Message: Application: etc... Best regards, Andr� Cardoso
report on inactive user accounts
Hi all. Is it possible to use eventlog analyzer 4 to generate a report on accounts that are inactive for more than 30days? If it is possible, please advise the steps on how such a report can be generated. Thks in advance.
Keep only n years or month of archives
Hi, It would be nice to have an automatic purge option of archive files. For exemple to have an option in the "File Archive Settings" page to keep n months or n years of archives and then delete them from the filesystem and remove the link in the DB, as you can do manually in the "Archived Files" page. Best Regards, DPE
Multiple Database Filters on the same host group
Hi, How does filter apply if we set multiple Database Filters on the same host group ? Regards, DPE
Archive only selected host or host group
Hi, Is that envisaged in a future release (or patch) to have an option to select which host or "host group" that should be archived. For exemple, to have the possibility to keep eventlog for certain servers for centralisation purpose only in the DB (not archived to files and zip) and in addition to archive only some servers eventlogs for compliant or longer reporting. Regards, DPE
Can you run OpManager and EventLog Analyzer on same server?
I've got OpManager running without issues on a Windows 2000 server (that is all the server does). So yesterday decided to install EventLog Analyzer. At first - it saw a couple servers with no problem, showed the logs, etc. Now however it gets nothing. If I verify logon credentials that passes, but if I tell it to scan now, that process just sits in an endless loop. Kinda strange that it worked and now does not only a day or two later. Has anyone tried what I am trying? There is no firewall in between
EventLog Analyzer - Alerts not working
Hi - I just installed EventLog Analyzer on Windows 2000. The servers add fine, and I can see event log data from the servers within the application. However, when I set an alert it doesn't seem to work. I'm doing the alert by the actual event ID...but I think maybe the argument area down at the bottom of the settings page is messing me up. What do those arguments mean? I'm just trying to have the server run a batch file when an event happens. THANKS!
TIMESTAMP in comp_eventlog
Hi, Im getting info directly from the DB, but I dont really get the timestamp format> 1203951779000 1203951795000 Im trying to get a table with this stuff> USERNAME - NAME (personal DB comparing with username) - # of Login failures ACELIS - Araceli LISA -18 CERVANTES - Rosa Cervantes I need to limit them by weeks, but first I need to undestand the timestamp. Thanks.
Alert profiles
Hi I refer to topic http://forums.manageengine.com/forumHome.do?forumGroupId=49000000002007&forumTopicId=49000002679957 where the support mention that "Yes you can use multiple values in comma separated against the Log Message Contains : field. It works in the boolean 'AND' operation". Does that mean if I have two log messages to track for (i.e maintenance, mirror), it will only send an alert if there are both occurence of maintenance and mirror? What if I want an alert to be sent upon detection
Email Alert not working
Forgive me if I am an idiot and asking a dumb question but the alert profile I created for eventID 6009 is not kicking off an email to me. The test works fine and the alert is generating and I see that the eventID kicks the alert off but it just doesnt send me an email. Is this becasue I have the free version? If it is then I will crawl back in my hole. Thanks :oops:
changing IPs - hosts appear "down"
hi, my client machines to be monitored are connected to the Eventlog Analyzer host by VPN to which they are irregularly disconnect and reconnect - which means, they tend to have different IPs all the time. Eventlog Analyzer seems to remember the host by IP, which means, the hosts are constantly flagged with "Access Denied" because Eventlog Analaizer connects to the wrong, the old, IP. is there something I can do about this? PAT
Resource hog?
I just found this product and have checked it out on a windows 2000 server. I set it up to monitor 3 other servers on the same network and everything seems fine accept the CPU usage is huge and mem yse is over 400MB! Is this normal? If so, I would need to dedicate a server to just this app.
Supress Report Graphs and Empty Processes
Hi, we generated a daily Report for us (hope the ability to edit this reports will come soon). We want to shrink these Report, though no graphs and no Processes with no data available will be shown in the report. Is this possible? Thanks
Next Page