Need to exclude specific windows event ID

Tags:

#1 jlference 6 years ago

I currently have NXlog community version installed on Windows 2012 R2 server. SEIM Manager is requesting that I stop sending Windows Security Event ID 5156 traffic from server. Is this possible. Thank you.

Permalink

#2 b0ti Nxlog ✓ 6 years ago (Last updated 6 years ago )

#1 jlference

I currently have NXlog community version installed on Windows 2012 R2 server. SEIM Manager is requesting that I stop sending Windows Security Event ID 5156 traffic from server. Is this possible. Thank you.

See the User Guide about filtering.

Login to see more