Checking Windows Eventlogs with Nagios

[Sand Philipp]

Hi,
 
thanks for the fast response! I startet to try out the check_win_eventlog.pl.
I installed it, and everything seems to be ok, but even when i force an error in the event log, i only get the status "Eventlog OK".
When i use different <ID>, i get something like
"./check_win_eventlog.pl -H sygoscala1.rz.sycor.de -s xyz -l 'System' -t '.*:+1:+2'
Found 1142 errors. Last was: EVT_ID: 3 Time: Mon Jun  7 08:51:58 2004 Printer __dsdegoe1_DS03/PCADM76/Session 2 was deleted."
which corresponds with the eventlog. But I won't get any Notification Mails or some Message from my Nagios.
 
Here are the relevant config entries, i think i has something to do with the -s <ID>...but don't know how to fix it.
 
 
checkcommands.cfg:
 
define command{
       command_name     check_win_eventlog
       command_line     $USER1$/check_win_eventlog.pl -H $HOSTADDRESS$ -s $ARG1$ -l $ARG2$ -t $ARG3$
}

services.cfg:# Eventlog sygoscala
define service{
        host_name               sygoscala1.rz.sycor.de
        service_description     Windows Eventlog
        use                     generic-service
        check_command           check_win_eventlog!sygoscala1!System!.*:+1:+2
        check_period            24x7
        max_check_attempts      4
        normal_check_interval   1
        retry_check_interval    1
        contact_groups          xyz
        is_volatile             1
        notification_interval   120
        notification_period     24x7
        notification_options    c,r
}
 
# Eventlog pcadm76
define service{
        host_name               pcadm76
        service_description     Windows Eventlog
        use                     generic-service
        check_command           check_win_eventlog!pcadm76!System!.*:+1:+2
        check_period            24x7
        max_check_attempts      4
        normal_check_interval   1
        retry_check_interval    1
        contact_groups          xyz
        is_volatile             1
        notification_interval   120
        notification_period     24x7
        notification_options    c,r
}

 
 
 
 
 


  _____  

	From: sunilshriram.borkhedkar at wipro.com [mailto:sunilshriram.borkhedkar at wipro.com] 
	Sent: Thursday, June 03, 2004 12:15 PM
	To: Sand Philipp
	Subject: RE: [Nagios-users] Checking Windows Eventlogs with Nagios
	
	
	hi,
	I am using one plugin but that is not standard plugin as provided with nagios.org
	The plugin is check_win_eventlog.pl
	 
	You type this name in google u will find the exact site.
	 
	Sunil

		-----Original Message-----
		From: nagios-users-admin at lists.sourceforge.net [mailto:nagios-users-admin at lists.sourceforge.net] On Behalf Of Sand Philipp
		Sent: Thursday, June 03, 2004 3:10 PM
		To: nagios-users at lists.sourceforge.net
		Subject: [Nagios-users] Checking Windows Eventlogs with Nagios
		
		

		Hi, 

		I hope this is the right Mailing list for this question... 
		I wonder if it is possible to monitor the Windows 2000+ Event Logs with any kind of Nagios Plugin. Like sending an alarm mail when Error with ID xyz accours or someting like that.

		Could you give me a hint, which plugin i could use for that? I already googled for that, but had no luck in finding an answer.

		Thanks for help in advance! 

		Philipp 

		_____________________________ 

		Philipp Sand 
		OC-CC-TEC-SYS 

		SYCOR GmbH 
		Heinrich-von-Stephan-Straße 1-5 
		D - 37073 Göttingen 

		Telefon +49 (0) 551 / 490 - 0 
		Telefax +49 (0) 551 / 490 - 2000 

		philipp.sand at sycor.de 
		www.sycor.de <file://www.sycor.de>  
		------------------------------------------------ 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.monitoring-lists.org/archive/users/attachments/20040607/92b07480/attachment.html>