Application and services log collection - Online help | EventLog Analyzer

Application and services log collection

EventLog Analyzer supports the collection of application and services logs from the Event Viewer. For example, to successfully collect PowerShell logs from Windows, you have to add a key inside the registry of the respective client machine from which you want to collect logs. You can do this by following these steps:
  1. Find and open regedit.msc.
  2. Navigate to HKEY_LOCAL_MACHINE > SYSTEM > CurrentControlSet > Services > EventLog.
  3. Create a new key called Windows PowerShell
  4. Restart the EventLog Analyzer service after adding the key in the registry of the client machine. 

EventLog Analyzer provides out-of-the-box reports for specific keys. You can refer to this guide to set up these reports. For other keys, logs can still be collected with basic parsing capabilities. EventLog Analyzer can be configured to deliver custom reports for them. 

      • Related Articles

      • Enabling historic log collection in EventLog Analyzer

        EventLog Analyzer collects all the logs present in the Windows Event Viewer (i.e., Windows Logs > Application, Security, System) when the historic log collection option is enabled. To enable historic log collection, follow the steps below:  Navigate ...
      • Log collection failure alerts

        Device down alert:   When configured devices don't respond to pings from EventLog Analyzer, it implies either of the following: The selected Syslog devices are not sending logs to EventLog Analyzer. EventLog Analyzer has not collected logs from the ...
      • Understanding your log management solution

        Key log terminologies When managing logs, there are terminologies that will help you make the most of the product in hand. Following are the list of such terms and their definitions as used in EventLog Analyzer.   Agentless and agent-based log ...
      • How to deploy EventLog Analyzer as a service?

        EventLog Analyzer as a service can be deployed in two ways:   Via the command prompt: Establish a remote connection with the server where EventLog Analyzer is installed. Open the command prompt with Admin privileges. Navigate to ...
      • Introduction to EventLog Analyzer

        What is log management?  An enterprise network consists of different entities—perimeter devices, workstations, servers, applications, and more. Each entity records every activity that unfolds within it in the form of logs. These logs hold information ...