I have an issue when view agent internal logs "View Log" in NXLog Manager.
When I clicked on the View Log button, it will pop up error message as follow:
1) Error Executing the requested operation: Could not parse XML; nested exception is org.xml.sax.SAXParseException; lineNumber:x, columnNumber:x; Character reference "&#.
Good Morning All,
I have a problem, I must to send the Event log a the LogCollecotr Linux, the problem is when Logcollector riceved the log, the formatting is much long, I want riceved an log so.
Example Log LInux:
" Jun 19 16:23:01 MSI su: pam_unix(su:session): session opened for user ema by (uid=0) "
I can receive the log in this format??
We are using Nxlog to send logs to RSA(SIEM), but few of the security logs are not sending to RSA.
Below are the event ids we are not receiving:
Event ids starting with 4860- 4890.
Below is the configuration which we are using in RSA.
Can you please check below configuration and let me know if anything needs to be changed to receive the windows security and application logs.