I use:
http://www.monitoringexchange.org/inventory/Check-Plugins/Operating-Systems/Windows/NagEventLog
It works pretty good, and you can set it up to alert for specific errors or
look for all and filter out fluff ones. I even went to far as to figure out
the registry settings and push updates for the eventIDs to filter via GPO.
Maybe not as glamourous, but it worked pretty good in our environment.
--
Mat W. - http://www.techadre.com
From: [email protected]
To: [email protected]
Date: Sat, 24 Jul 2010 12:29:54 -0700
Subject: Re: [Nagios-users] effective use of NSClient++ Eventlog management
I wrote my own event log management plugin because I didn’t find one that I
liked. You can download it as part of the Sourceforge tntnagiosplugins project.
It should work with NSClient++ (although admittedly I am not testing against
that).
It reports critical and warning events on the specified host (it will exclude a
number of events that are known to be harmless, for instance DCOM 10009 and
about a dozen or so other ones).
The “top ten events” seems like interesting functionality, but doesn’t really
fit very well into the Nagios philosophy. Nagios can ultimately only
distinguish between OK, WARNING, CRITICAL. There are better tools for
statistical analysis.
The collection of plugins also contains a separate plugin that reports on login
errors.
From: Ron Wilson [mailto:[email protected]]
Sent: Wednesday, July 21, 2010 3:52 PM
To: Nagios Users List
Subject: Re: [Nagios-users] effective use of NSClient++ Eventlog management
I have tried several times over the past year but never managed to get the
check_eventlog working. If you have any success do tell us about it
From: keshav murthy [mailto:[email protected]]
Sent: Wednesday, 21 July 2010 10:07 p.m.
To: [email protected]
Subject: [Nagios-users] effective use of NSClient++ Eventlog management
Dear all,
We are moving from pnsclient to NSclient++ for all our windows client. We would
like to use the Event log management available with NSClient++.
We would like to do the following (if it is feasible)
Top Ten events in all the clients overall.
Critical Event IDs on any server: We are looking for only the critical event
ID's (like a AD account lockout event ID etc) to be captured and reported to
the nagios server.
Have anybody started using this eventlog management effectively and what are
your way of putting it in place.
Cheers
Keshav==========================================================For more
information on the Television New Zealand Group, visit usonline at tvnz.co.nz
==========================================================CAUTION: This e-mail
and any attachment(s) contain information thatis intended to be read only by
the named recipient(s). This informationis not to be used or stored by any
other person and/or organisation.
_________________________________________________________________
The New Busy is not the too busy. Combine all your e-mail accounts with Hotmail.
http://www.windowslive.com/campaign/thenewbusy?tile=multiaccount&ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_4
------------------------------------------------------------------------------
The Palm PDK Hot Apps Program offers developers who use the
Plug-In Development Kit to bring their C/C++ apps to Palm for a share
of $1 Million in cash or HP Products. Visit us here for more details:
http://ad.doubleclick.net/clk;226879339;13503038;l?
http://clk.atdmt.com/CRS/go/247765532/direct/01/
_______________________________________________
Nagios-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting
any issue.
::: Messages without supporting info will risk being sent to /dev/null
