effective use of NSClient++ Eventlog management

Mathew Walker lmw94002 at hotmail.com
Mon Jul 26 22:19:20 CEST 2010


I use: http://www.monitoringexchange.org/inventory/Check-Plugins/Operating-Systems/Windows/NagEventLog

 

It works pretty good, and you can set it up to alert for specific errors or look for all and filter out fluff ones.  I even went to far as to figure out the registry settings and push updates for the eventIDs to filter via GPO.  Maybe not as glamourous, but it worked pretty good in our environment.

-- 
Mat W. - http://www.techadre.com


 


From: subscription at kkeane.com
To: nagios-users at lists.sourceforge.net
Date: Sat, 24 Jul 2010 12:29:54 -0700
Subject: Re: [Nagios-users] effective use of NSClient++ Eventlog management





I wrote my own event log management plugin because I didn’t find one that I liked. You can download it as part of the Sourceforge tntnagiosplugins project. It should work with NSClient++ (although admittedly I am not testing against that).
 
It reports critical and warning events on the specified host (it will exclude a number of events that are known to be harmless, for instance DCOM 10009 and about a dozen or so other ones).
 
The “top ten events” seems like interesting functionality, but doesn’t really fit very well into the Nagios philosophy. Nagios can ultimately only distinguish between OK, WARNING, CRITICAL. There are better tools for statistical analysis.
 
The collection of plugins also contains a separate plugin that reports on login errors.
 


From: Ron Wilson [mailto:ron at tvnz.co.nz] 
Sent: Wednesday, July 21, 2010 3:52 PM
To: Nagios Users List
Subject: Re: [Nagios-users] effective use of NSClient++ Eventlog management
 
I have tried several times over the past year but never managed to get the check_eventlog working. If you have any success do tell us about it
 



From: keshav murthy [mailto:nkeshav12 at gmail.com] 
Sent: Wednesday, 21 July 2010 10:07 p.m.
To: nagios-users at lists.sourceforge.net
Subject: [Nagios-users] effective use of NSClient++ Eventlog management
 

Dear all,

 

We are moving from pnsclient to NSclient++ for all our windows client. We would like to use the Event log management available with NSClient++.

 

We would like to do the following (if it is feasible)

 

Top Ten events in all the clients overall. 

Critical Event IDs on any server: We are looking for only the critical event ID's (like a AD account lockout event ID etc) to be captured and reported to the nagios server.

 

Have anybody started using this eventlog management effectively and what are your way of putting it in place.

 

Cheers

Keshav==========================================================For more information on the Television New Zealand Group, visit usonline at tvnz.co.nz ==========================================================CAUTION:  This e-mail and any attachment(s) contain information thatis intended to be read only by the named recipient(s).  This informationis not to be used or stored by any other person and/or organisation. 		 	   		  
_________________________________________________________________
The New Busy is not the too busy. Combine all your e-mail accounts with Hotmail.
http://www.windowslive.com/campaign/thenewbusy?tile=multiaccount&ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_4
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.monitoring-lists.org/archive/users/attachments/20100726/8f7a8513/attachment.html>
-------------- next part --------------
------------------------------------------------------------------------------
The Palm PDK Hot Apps Program offers developers who use the
Plug-In Development Kit to bring their C/C++ apps to Palm for a share 
of $1 Million in cash or HP Products. Visit us here for more details:
http://ad.doubleclick.net/clk;226879339;13503038;l?
http://clk.atdmt.com/CRS/go/247765532/direct/01/
-------------- next part --------------
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null


More information about the Users mailing list