Event Log

[Deleted User][Deleted User]

Hello,

it is possible just to check the Event Log for specific Errors for example from a specific source or with a specific ID ?

Comments

  • [Deleted User][Deleted User]
    I´m using the resource kit tool elogdmp.exe to extract from my 2 dcs a file with all the security events from them. This file is produced at each 15 minutes. Then I read this file with a rule per content scanning for a specific file content and sending an alert if found.
  • jguthriejguthrie
    Did anybody ever get a good answer for this?
  • AdministratorAdministrator
    It is not possible to use the Eventlog to detect it for a specific ID or source. It just verifies if an entry can be found matching the level defined.



    Regards,



    Forum Administrator
  • jguthriejguthrie

    Are their any plans to change this in a future version?

  • AdministratorAdministrator
    I will pass it on to our development team as an enhancement request.



    Forum Administrator
This discussion has been closed.