2.9.1347

Remote collection of (restricted) file

Scenario:

I have NXLog EE installed on a host in Windows domain.

I need to read DHCP logs from the DC(s), UNC path: \\<server name>\C$\Windows\System32\dhcp\DhcpSrvLog-*.log

AskedJanuary 28, 2016 - 1:52pm

1
response

djontra

KISS: beginner's problems with im_file and om_file

Hello nxlog world,

Shamed to say, I've spent entire yesterday trying to figure out how to read Windows DHCP log files and ship the events to ElasticSearch.

Problem was with using direct path for folder C:\Windows\System32\dhcp\. Managed to get nxlog to read by sharing the folders (read-only permissions) to the user account used for nxlog service account logon.

2.9.1347,
windows,
dhcp,
dns,
im_file,
om_file,

AskedJanuary 21, 2016 - 11:45am

You are here

2.9.1347

Remote collection of (restricted) file

KISS: beginner's problems with im_file and om_file