> Critical Event IDs on any server: We are looking for only the critical event >ID's (like a AD account lockout event ID etc) to be captured and reported to >the >nagios server.
have a look at: http://www.smetj.net/wiki/Molog It will require you to roll up your sleeves a bit, but it scales quite well. MoLog can handle syslogs & eventlogs. Personally, I think the trick is to initially report on all criticals and warnings and filter out uninteresting alerts along the way. You'll reach a point we're you'll be alerted on the interesting eventid's pretty quickly... Hope it helps, Jelle ------------------------------------------------------------------------------ This SF.net email is sponsored by Sprint What will you do first with EVO, the first 4G phone? Visit sprint.com/first -- http://p.sf.net/sfu/sprint-com-first _______________________________________________ Nagios-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
