Miscellaneous
How to disable default Admin account in EventLog Analyzer
Objective EventLog Analyzer comes with a built-in default Admin account that has full administrative privileges. For security and compliance reasons, few organisations would need to disable this default account. This article offers you the steps to ...
How to create a local technician account in EventLog Analyzer
Objective It is essential to have Role based Access Controlled Technician Account to maintain the optimal security to the EventLog Analyzer.This document offers step by step instructions to create a Local Technician account or a technician account ...
How to auto-add domain users as technicians in EventLog Analyzer
Objective EventLog Analyzer offers role-based access control (RBAC) option for accessing the application's data by creating technician account based on specific roles (can be created based on available presets) and based on the Onboarded Devices or ...
How to add a report as a widget in the EventLog Analyzer dashboard
Objective To help users quickly visualize and track critical report insights by adding them as widgets to the EventLog Analyzer dashboard for easier monitoring and faster decision‑making. Prerequisite Access to the EventLog Analyzer web console. An ...
Troubleshooting: Invalid access key error while configuring Advanced Threat Analytics in EventLog Analyzer
Issue description This issue occurs while configuring Advanced Threat Analytics in EventLog Analyzer. Possible cause EventLog Analyzer build is lower than 12550. The access key may not copy correctly if the browser is zoomed in and a scroll-bar ...
How to send logs to an Amazon S3 Bucket in EventLog Analyzer
Objective EventLog Analyzer offers 2 type of storage. Live logs and archive logs. Live logs are the data that are visible in user interface which is recommended to store in local drive or DAS(Directly Attachable Storage). Archive logs are the data ...
How to migrate EventLog Analyzer Archivezip file from one location to another - Windows instance
Objective This article provides a detailed step-by-step guide to migrate EventLog Analyzer archives to a new server or different drive in a Windows instance. User can migrate archivezip files to local path & remote path. Prerequisites Ensure EventLog ...
How to create or configure an Alert Profile in EventLog Analyzer
Objective Learn how to set up an alert profile in EventLog Analyzer to automatically send notifications based on specific log events and conditions. This guide simplifies the process for users at all technical levels. Prerequisite Technician or admin ...
How to Delete Old Logs or Data in EventLog Analyzer
Objective This article helps you manage and delete old log data in EventLog Analyzer using retention and archival settings. It explains how to automatically or manually remove outdated logs to optimize storage and maintain disk usage. Prerequisites ...
How to Add Terminal Servers as Application Sources in EventLog Analyzer
Objective This article provides detailed steps on how to add Terminal Servers as application log sources in EventLog Analyzer. By adding Terminal Servers, you can collect, monitor, and analyze event logs generated from remote desktop sessions and ...
How to track the activities performed by technician (user audit) in EventLog Analyzer
Objective This article focuses on step by step instructions for tracking the activities performed by a technician in EventLog Analyzer user interface. Auditing the user activities in the EventLog Analyzer user interface offers a complete visibility ...
How to trigger an alert notification for activities performed by technicians in EventLog Analyzer
Objective It is essential to set a notification for critical activities performed within the SIEM application and have a track for the same. This article focuses on step-by-step instructions for configuring Alert notifications for activities ...
Troubleshooting: Unable to Access EventLog Analyzer User Interface
Issue description You may not be able to access EventLog Analyzer user interface or web console in your browser or over multiple machines thou EventLog Analyzer is running as service/console mode. This article offers possible cause and step by step ...
Endpoint, Cloud or Log source deletion in EventLog Analyzer
Objective You may delete a device or application from EventLog Analyzer due to any of the following reasons: As the device or application auditing is no longer used or required for auditing Misconfigured the device with different log format. Device ...
How to Onboard Non-Predefined or Custom Log source in EventLog Analyzer
Objective EventLog Analyzer offers predefined support for various log sources. Predefined support includes built-in parsing, reports (as per market requirement), Detection Rules & Alerts. EventLog Analyzer offers extensive capability to onboard and ...
How and when to choose Summary View for creating custom report in EventLog Analyzer
Objective This article offers you the steps to create custom report as Summary View in EventLog Analyzer. It will guide you through the process of generating custom report as Summary View and offer a brief idea on when to use this option for your ...
How and when to choose Tabular View for creating custom report in EventLog Analyzer
Objective This article offers you the steps to create custom report as Tabular View in EventLog Analyzer. It will guide you through the process of generating custom report as Tabular View and offer a brief idea on when to use this option for your ...
How to build criteria using Search for custom report in EventLog Analyzer?
Objective This article provides step-by-step instructions for creating custom report criteria using the Search tab. This option delivers a smoother experience and simplifies the process of building criteria for custom reports. Prerequisites ...
How to create Custom Parser or Format in EventLog Analyzer
Objective Creating Custom Log format option is available in EventLog Analyzer from build 12435 onwards, which offers you a flexibility to create your own Log formats. You can create multiple custom parsing rules within them to extract multiple fields ...
How to Extract New/Custom Fields from Log Data Using Log Search in EventLog Analyzer
Objective This article offers you the steps to extract new fields from log data in EventLog Analyzer. It will guide you through the process of defining and extracting custom fields to enhance log analysis and reporting. Prerequisites Access to ...
How to Extract Fields during Log Import in EventLog Analyzer
Objective Log import offers you an option to import logs from custom application or non predefined supported log sources. This article offers you the steps to extract fields during log import in EventLog Analyzer. It will guide you through the ...
How to import logs in EventLog Analyzer from Remote path
Objective Some applications might record logs in the file system so the user can import the logs into EventLog Analyzer. These logs must be located in the Local file system of the EventLog Analyzer instance with the shared path of Windows OS and ...
How to enable audit for PostgreSQL logs in EventLog Analyzer
Objective EventLog Analyzer can audit PostgreSQL logs via log import feature, This article focuses on how to import the PostgreSQL logs via log import in EventLog Analyzer. Prerequisites Availability of license purchased. For build lower than 13000 - ...
FAQs- Migration
Post Migrating the application to a different server, do I need a new license key? Ans: Not required. The license key will be applied to the instance already, and reapplying the license key is not required in this case. Reapplying license key is ...
How to perform Veeam auditing in EventLog Analyzer
Objective Veeam is a data protection and disaster recovery solution designed for modern IT environments. ManageEngine EventLog Analyzer offers Veeam extension for which is designed to enable seamless integration of log data from Veeam Backup & ...
How to export the user activities report of the EventLog Analyzer technician
Objective As part of compliance and best practices, it is essential to monitor the activities of technicians like Administrator, Operator or any user with any technician role in EventLog Analyzer. This article focuses on step by step instructions for ...
How to configure log collection filters in EventLog Analyzer/Log360
Objective EventLog Analyzer offers log filtering capabilities, so that you can filter/remove/exclude unwanted events being collected or collect only the logs you actually need, by avoiding noisy events being collected. Filters let you include or ...
How to reset two-factor authentication in EventLog Analyzer
Objective EventLog Analyzer offers Two-Factor Authentucation(2FA/TFA) for enhanced secure login for the application user interface. All the enrolled technicians can be provided with this functionality and the administrator has the access to enroll or ...
How to enable audit for SAP ERP audit logs in EventLog Analyzer
Objective EventLog Analyzer can audit SAP ERP logs via log import feature, This article focuses on how to import the SAP ERP logs via log import in EventLog Analyzer. Prerequisites Availability of license purchased. For build lower than 13000 - ...
How to calculate the log flow rate/EPS in Eventlog Analyzer
Objective To estimate the system resources needed for the EventLog Analyzer server, it is important to calculate the Events Per Second (EPS) value. EPS indicates the approximate number of logs generated per second from various log sources such as ...
Troubleshooting: Disk space issues in EventLog Analyzer
Issue description EventLog Analyzer server might run out of storage due to misconfiguration and other known factors. This article offers troubleshooting steps to resolve when your disk or drive where the application is installed is full and help you ...
How to migrate live data (ES Data) from one location to another - Windows
Objective This article provides a detailed step-by-step guide to migrate EventLog Analyzer live data / data stored in Elasticsearch to different location or server. Prerequisites Access to EventLog Analyzer console as an administrator. Server user ...
How to Perform Scheduled Import Log Collection in EventLog Analyzer
Objective EventLog Analyzer supports scheduled log imports from both remote paths and S3 buckets. You can enable scheduled log collection to have the application read data from the same file at regular intervals, or configure a file naming convention ...
Error: Windows device status: Access denied
Issue Description Windows device status displays Access Denied post adding the device or while attempting to collect logs. The Access denied error indicates an issue with permissions or security settings preventing access to WMI (Windows Management ...
Troubleshooting Archive File is Missing in EventLog Analyzer
Issue description Archive files show as missing when the flat file created during the zipping process is not available in its intended location. Possible causes Below are the scenarios where an archive file integrity is updated as Archive file is ...
Troubleshooting Incorrect Severity in EventLog Analyzer Custom Report
Overview This document provides guidance to identify and resolve issues where the severity levels in EventLog Analyzer custom reports appear incorrect, ensuring accurate and reliable reporting. Possible Causes Misconfigured severity mapping in ...
How to update the EventLog Analyzer server details in the agent registry key
Objective This document explains the steps to update the EventLog Analyzer server details in the agent registry key. This is required when the EventLog Analyzer server IP address, hostname, or port is changed, ensuring uninterrupted communication ...
How to add HP-UX/Solaris/AIX device in EventLog Analyzer
Objective EventLog Analyzer collects logs from HP-UX/Solaris/AIX devices using the Syslog protocol. Syslog services has to be configured in HP-UX/Solaris/AIX Devices to have the logs forwarded to EventLog Analyzer. This article offers you step by ...
How to add F5 device in EventLog Analyzer
Objective EventLog Analyzer collects logs from F5 devices using the Syslog protocol. Syslog services has to be configured in F5 Devices to have the logs forwarded to EventLog Analyzer. This article offers you step by step instructions to add F5 ...
How to reduce the number of cached records in EventLog Analyzer
Issue description Cached record files are unprocessed log files that can accumulate within the EventLog Analyzer local directory when the indexing process is disrupted. When the number of cached record files exceeds 100, an email notification will be ...
Next page
