Search Result

I have a template I'm using to gather event ID's.
Currently, I've successfully created a key: eventlog[Security,,,,4625,,skip]
However, I'd like to filter out anything that has:
Subject:

Security ID: NULL SID​

I've tried to do a regular expression / key...

Hi Guys!

Information:
Zabbix-Server Version: 6.0.5
Zabbix-Agent-Version: Zabbix Agent (6.2.4)


I want to do Windows-Eventlog monitoring with Zabbix.

I think that I created the items the right way as I followed the zabbix-guidelines in their documentation....

Hi,
Is it possible to extract a variable from a value? I have an application that allows me to monitor windows server eventlogs, which informs me which user has blocked his account (eventlog [Security ,,,, ^ 4740 $ ,, skip]). The application returns a value containing information such as the name...

Tried to configure "new item" for windows eventlog. Click "check now" always shown "wrong item type".

Following URL configure:-
https://www.zabbix.com/documentation...agent/win_keys

Type: Zabbix agent (active)
Key: eventlog[System,...

Hi all,

I am monitoring if a certain eventlog comes by and trigger when it does. This al works but now i want it NOT to be triggerd if the value contains certain text.

Anyone got some ideas?

Здравствуйте!

Собираю с контроллера домена события по ID "4720 - User Account Created" плюс несколько других.

В триггере указал:

Name: Event Log - User Account Created...

I read so much about alarm recovering and at some point it was not clear how this should work.
I could guess the recovery (for eventLog) would be the same expression followed by a nodata function.

Now, I am trying to configure a trigger in Zabbix in order to monitore a simple eventLog...

Olá,

Estou com problemas para monitorar os log do windows do TaskScheduler.
O zabbix não traz nenhuma informação.
Estou colocando a chave com essa expressão: eventlog[Microsoft-Windows-TaskScheduler/Operational,,"Warning|Error",TaskScheduler]. Mas o zabbix...

Задача: отслеживать все события категории предупреждение...

Hi,

ver. 2.4
windows 2008/2012

is it possible to filter xml part of event log, does anyone have idea how to do that?

For example I would like to filter Microsoft-Windows-Backup log for event ID 14 and search for HRESULT part because if different then...

I am just beginning to use Zabbix and have a question about setting up a trigger for my eventlog items (one Application and one System). I initially couldn't get any data, but figured out that it needs the active agent and then the data came through. LOTS of data, data from months past, and thousands...

Hello everyone,

I have a problem with "EventLog", I use the right template and I have exactly the same configuration : (https://www.zabbix.com/wiki/howto/mo...ndows_eventlog)

But the problem come of the trigger :
"Trigger...

Hi,

I have a problem with my Trigger in Zabbix.

I Want to trigger an alert if a windows event log does not contains an event in 24 hours.
I tried

{Backup Exec 2010:eventlog[Application,,,,34112,,].str("Daily Full Backup",86400)}=0

...

I’m trying read the backup logfile of a SBS2011 server.
In a template I created an item and a trigger.
Item : eventlog[Microsoft-Windows-Backup,,"information",,^14$]
Trigger: {Servername:eventlog[Microsoft-Windows-Backup,,"information",,^14$].logseverity(0)}=1...