Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - khaitdoan

Pages1
#1
General Support / What is needed to aggregate or collect log messages from Windows Event Log?
February 25, 2016, 07:16:52 PM
I need to gather log messages from the Windows Event Log from various machines.

I have read https://www.netxms.org/documentation/adminguide/common-tasks.html and https://wiki.netxms.org/wiki/UM:Log_Monitoring but found very little information on how to do this.

What is required for this?  Do I need to configure the agent?
#2
General Support / Re: Not able to get syslog or Windows event log to show up in the management console
February 25, 2016, 07:02:28 PM
Can someone please tell me if I am missing something?
#3
General Support / Not able to get syslog or Windows event log to show up in the management console
February 24, 2016, 10:03:03 PM
I am new to NetXMS, and having a tough time configuring it to collect logs from various servers.  What I want to do is to configure the agent to forward ALL the syslog and the Windows Event log messages to the server, but it doesn't matter what I tried, I could not get the log messages to show up in the management console.

I am using the following version:

NetXMS Server Version 2.0.1 Build 8059 (2.0.1-RELEASE) (UNICODE)
NXCP: 3.47.1.3 (AES-256, Blowfish-256, IDEA, 3DES, AES-128, Blowfish-128)

NetXMS Core Agent Version 2.0.1 Build 8059 (2.0.1-RELEASE) (UNICODE)
NetXMS Management Console: 2.0.1

In my nxagentd.conf, I have:

#
# NetXMS agent configuration file
# Created by server installer at Fri Jan 15 13:20:31 2016
#

# LogFile = {syslog}
LogFile = C:\Khai\doNotDelete\NetXMSHome\Log\netxms-agent.log
DebugLevel = 9

MasterServers = 127.0.0.1, 192.168.41.184
FileStore = C:\Khai\doNotDelete\NetXMSHome\NetXMS\var
RequireAuthentication = no
SubAgent = winperf.nsm
SubAgent = portcheck.nsm
SubAgent = logwatch.nsm

# Below is log parser definitions
*LOGWATCH
Parser = C:\Khai\doNotDelete\NetXMSHome\LogParsers\WindowsEventLogParser.xml

The content of C:\Khai\doNotDelete\NetXMSHome\LogParsers\WindowsEventLogParser.xml:

<parser>
   <file>*System</file>
   <rules>
      <rule>
         <match>.*</match>
      </rule>
   </rules>
</parser>

From the Configuration -> Syslog Parser screen, I've configured the matching regular expression to be .* and everything else are empty or default value.

The EnableSyslogDaemon flag is set to 1.

I've restarted the agent and the server, but from Monitor -> Syslog and Monitor -> Events screens, it is empty.

Is this a known problem with the version that I am using?  What am I doing wrong?  Am I missing anything?
#4
General Support / Re: How can I figure out the version that I am using
February 24, 2016, 09:24:17 PM
Thank you for the quick reply.  For the management console, I can find the version number by clicking on "Help -> About NetXMS Management Console".

Thank you!
Khai
#5
General Support / How can I figure out the version that I am using
February 24, 2016, 07:47:11 PM
The directory that I installed NetXMS did not include the version number.  How can I figure the version of the server, the agent, and the management console?

Thank you!
Khai
Pages1