Hello
I am trying to set up granular email alerts, i managed to set up
emailing for specific users with individual agents , but i am having an
issue with the last setting .
I want to set up an email alert that will include all agents except for
a specific agent and only above a certain severity .
I made an entry on the ossec.conf like this :
<email_alerts>
<email_to>[email protected]</email_to>
<event_location>!win_host</event_location>
</email_alerts>
And since then i am not getting any alerts although i see entries in the
alerts log .
my questions are :
1) is there a way define a group of agents ( all linux , all windows)
and set up alerts for a group ?
2) how can i define alert to all host and exclude a particular host ?
Thanks
--
Assaf Flatto
Linux System Administrator
No.9 | 6 Portal Way | London | W3 6RU |
T: +44 (0)20 88 96 8014 | M: +44 (0)75 3568 1067
I am doing a Charity Bike ride On the 27 of June for the
Capital to Coast Charity. Please help by Donating
http://www.justgiving.com/Lovefilm-capital-to-coast
-----------------------------------------------------------------------------------------------------------------------------------------
LOVEFiLM UK Limited is a company registered in England and Wales.
Registered Number: 06528297.
Registered Office: No.9, 6 Portal Way, London W3 6RU, United Kingdom.
This e-mail is confidential to the ordinary user of the e-mail address to which it was addressed. If you have received it in error,
please delete it from your system and notify the sender immediately.
This email message has been delivered safely and archived online by Mimecast.
For more information please visit http://www.mimecast.co.uk
-----------------------------------------------------------------------------------------------------------------------------------------
--
To unsubscribe, reply using "remove me" as the subject.
