Hi,
I'm using the im_msvistalog input to grab events from the Windows security log however the important information is being ignored.
This is one my Windows events:
Hi!
I have an issue with NXlog CE 2.10.2102. I noticed that nxlog send the same log many times on some PCs. This happends when the PC reboot. I found that the file "configcache.dat" is not always overwritten.
How to avoid this issue?
Here is a part of my conf
Im not sure why im get this access denied in the nxlog logs
2018-11-01 10:17:45 ERROR failed to subscribe to msvistalog events,access denied [error code: 5]; Access is denied.
Im using nxlog EE v4 on windows 2012 server and it is run as default system user
Any suggestions where to look in the windows configuration or nxlog configuration itself ?
Hi team,
I'm getting an error during filtering activities on administrator account in WS2012. The goal is to track access and logout only for administrator account name (in $TargetUserName) that start with "admin_".
this is the conf file used:
Hi Team,
Do anyone know what nxlog file should be installed on Amazon Linux AMI?
I was going through the below forum and it's pretty confusing:
https://forums.aws.amazon.com/thread.jspa?threadID=51647
Any help would be appreciated.
