Community Forum

Post a question
1
response

Log Forwarding to Azure Sentinel

Hi
I'm trying to get nxlog ee running with Microsoft Sentinel still get the error

2021-04-14 19:02:04 INFO [om_http|AzureHTTP] connecting to xxxxxxxx.ods.opinsights.azure.com(xx.xx.xx.xx):443
2021-04-14 19:02:04 ERROR [om_http|AzureHTTP] SSL error, failed to load ca cert from 'C:\Program Files\nxlog\cert\test.crt', reason: no certificate or crl found
2021-04-14 19:02:04 INFO [om_http|AzureHTTP] reconnecting in 4 sec

AskedApril 14, 2021 - 7:08pm
1
response

NXlog error with "Extended configuration example of security-focused event IDs to monitor" Nxlog configuration for Windows events

Hi,

I am trying to test/deploy the "Extended configuration example of security-focused event IDs to monitor" NXlog configuration for Windows events, as per the article/NXlog conf file example here: https://nxlog.co/documentation/nxlog-user-guide/eventlog-eventids.html (Example 543). I am using NXLog CE (latest version) on Windows 2012R2.

Here's the NXlog.conf I have, using the above conf example and added to the usual NXLog conf needs:

AskedApril 12, 2021 - 6:54pm
3
responses

Sending logs to multiple destinations

Hi team,

Our current .conf file has only one output module and sending logs to only one destination.
Can we send the logs to 2 different destination parallelly(Specifically we need to send to Accenture MSS)

Regards,
Anjani CM

AskedApril 12, 2021 - 9:08am
3
responses

New to NXLog

I'm new to NXLog. I have inherited this from previous engineers no longer with my company. I have to update the server OS and wanted to know when updating the server, do I have to immediately update the NXLog software or will the previous software work? If I update the NXLog software, do I have to immediately deploy the newest version of the endpoint application in my environment?

AskedApril 5, 2021 - 10:14pm
1
response

Need to read only last line from my log file and post it to centralized log

We are looking the log file for n number of Application and pushing into one centralized log. We are reading the log file for every 15 min.Now I want read only last line of all logfiles and need to push that into centralized log. Any cone could you please help on this.

AskedApril 1, 2021 - 12:14pm

Pages