Multi-tenant in Nxlog Manager

we need to create a customer user who can have access to the nxlog manager to see his agents, but I would like the customer user to see nothing of other customer users.
Is that even possible?

Thank you

AskedJuly 16, 2019 - 4:04pm

Capture Windows Event ID in Logs

Hey all,

I want to be able to capture the event IDs of windows events in my SIEM but currently they don't come through and I'm not sure what changes need to be made to make them come through. Below are my config files and an example of how they come in. Any ideas? Thanks in advance

How events come in:

AskedJuly 10, 2019 - 7:42pm

Rsyslog Refugee --- some basic questions


After spending several months trying to understand rsyslog interstellar configuration -- I am thinking of nxlog (enterprise) for a larger deployment in the coming months. Currently I am messing around with the community edition. while the documentation is nice --- some of example for basic things are a little short on info. Google searches has been a little frustrating as it focuses on Windows alerting which is not what we need.

AskedJuly 8, 2019 - 8:01pm

Logs buffer when Graylog is offline

Hi all,
searching on internet I found that by defaukt nxlog has a buffer of 65000 bytes,
but it seems it's not working in my environment.

I'm using nxlog CE 2.10 (in a Windows 2012 environment) and Graylog 2.5.1
In my nxlog conf file I have 2 inputs (im_msvistalog, im_file) and 1 output (om_udp).
I tried to stop the input in Graylog and start it after 1 hour, but logs collected by event viewer during that our were not sent to Graylog.

AskedJuly 4, 2019 - 6:12pm

Merge two lines

Hello, this is my conf (without general directives)

AskedJuly 2, 2019 - 4:46pm