I need some help configuring event log monitoring.

Firstly, we need to enable event log monitoring for all windows based servers, how can I do this in bulk rather than loading each monitoring, editing the monitor to include event log monitoring.

Secondly, the event rules seem fairly straight forward but under the event IDs can I do ANDS or ORS for example system reboots. Can be logged under the following event logs.

user32 with IDS of  1074,1075,1076,7073 Rather than having 4 / 5 rules to cover this I'd like to do

Source = user32 with ID of either 1074,1075,1076,7073 etc...

Regards,