Hi All,
I need some help.
I have already created a new template and also the item with the following key
But i have some questions :
1 ) Do i really need to create a trigger?
2) And do i need to download a new template for Windows Event Log?
I tried creating the following trigger but it doesn't work.
((find(/Windows Failed Logon/eventlog[Security,,,,4625,,skip],,"regexp","{HOST:eventlog[Security,,,,4625,,skip].logeventid(4625"))<>0)
Thanks and Regards,
Vanesen.
I need some help.
I have already created a new template and also the item with the following key
| eventlog[Security,,,,4625,,skip] |
1 ) Do i really need to create a trigger?
2) And do i need to download a new template for Windows Event Log?
I tried creating the following trigger but it doesn't work.
((find(/Windows Failed Logon/eventlog[Security,,,,4625,,skip],,"regexp","{HOST:eventlog[Security,,,,4625,,skip].logeventid(4625"))<>0)
Thanks and Regards,
Vanesen.
Comment