You are hereLongitude Knowledge Book / kb35: Viewing and Alerting on Windows Event Logs
kb35: Viewing and Alerting on Windows Event Logs
-
Set up WindowsEventLog Monitoring.
By default, only Error messages are collected from the Application and System logs. Configure additional collections to collect other severities or logs.
-
Viewing WindowsEventLog Events.
Visible in Dashboards >> Event Monitor >> WindowsEventLog. Please note: Only events in the Application view can be used to trigger action rules or correlated events.
-
Promote WindowsEventLog Events to Application Events.
If you need to have a WindowsEventLog event trigger an alert/correlated event, promote that event to an event in the Application Event Monitor. Only Error events are promoted to Application Events by default.
-
To promote additional WindowsEventLog severities to Application Events -
modify Monitoring >> Manage Rules >> WindowsEventLog >> TypeList.
