[jira] [Commented] (NIFI-1502) FetchEventViewer - NiFi should be able to consume Even Viewer (Windows Logs)

Thu, 28 Jul 2016 09:01:45 -0700 

    [ 
https://issues.apache.org/jira/browse/NIFI-1502?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15397725#comment-15397725
 ] 

Yohann commented on NIFI-1502:
------------------------------

Thanks [[email protected]] and [~JPercivall] for the feedback.

According to the comment of [~trixpan], I'd just like to see the implementation 
of the B option:
??B - (host runs Unix derivative) - Implement sink using openwsman java 
bindings??

And why Windows Event Forwarding is great :) : 
* [Quick and Dirty Large Scale Eventing for 
Windows|https://blogs.technet.microsoft.com/wincat/2008/08/11/quick-and-dirty-large-scale-eventing-for-windows/]
** *Agentless*: Event Forwarding and Event Collection are included in the OS by 
default
** *Multi-Tier*: Forwarding architecture is very scalable where a “Source 
Computer” may forward to a large number of collectors and collectors may 
forward to collectors
** *Group Policy Aware*: The entire model is configurable by Group Policy
** *Resiliency*: Designed to enable mobile scenarios where laptops may be 
disconnected from the collector for extended periods of time without event loss 
(except when logs wrap) as well as leveraging TCP for guaranteed delivery
* [Spotting the Adversary with Windows Event Log Monitoring - by the 
NSA|https://www.iad.gov/iad/library/reports/spotting-the-adversary-with-windows-event-log-monitoring.cfm]

> FetchEventViewer - NiFi should be able to consume Even Viewer (Windows Logs)
> ----------------------------------------------------------------------------
>
>                 Key: NIFI-1502
>                 URL: https://issues.apache.org/jira/browse/NIFI-1502
>             Project: Apache NiFi
>          Issue Type: Bug
>            Reporter: Andre
>             Fix For: 1.0.0
>
>
> While a lot of the use cases using NiFi orbit the IoT, Unix Cloud type 
> workloads, I suspect NiFi would be a great fit for data collections of 
> business critical platforms running Windows.
> A good example of this type of workload would be ATMs running Windows 7 and 
> even run Windows XP, or collection of Event Log error events on Windows 
> platforms (including Azure).



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to