I have OSSEC 2.8.3 installed on a Windows 2012R2 server and have added an eventchannel localfile option to gather logs from "Microsoft-Windows-Backup" log. No errors on startup.
On the OSSIM side, I have logall enabled and am checking alerts.log file and can ONLY see Error logs being forwarded, not Information or Warning logs. I need these latter as that is where the successful and successful with warning errors are logged as well as a backup was configured or cancelled. How can I get ALL of the logs for all log severities sent to OSSIM using 2.8.3 OSSEC for Windows and eventchannel? Thanks in advance. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
