Has anyone gotten nxlog running on linux to receive windows logs through Windows Log Collector initiated by a GPO? In simple terms, using nxlog to receive Windows logs without a nxlog agent running on Windows? If so, any documentation on how to make that happen?

Thank you in advance, Bruce M. Wink

AskedAugust 14, 2017 - 9:31pm

Answer (1)

I believe you will want to use im_wseventing with Windows Event Forwarding configured on the Windows client machines.

See "Chapter 48. Windows EventLog" in the upcoming user guide on setting this up.