Ad Widget

**[email protected]** · 26-06-2018, 20:18

I have the same problem. I have this

{SERVER1:eventlog[Application,,,,15007,,skip].logeventid(15007)}=1
and

Recovery Expression
{SERVER1:eventlog[Application,,,,15007,,skip].nodata(30)}=1 In my case the trigger stays forever as a problem, never getting resolved.

**kernbug** · 27-06-2018, 07:32

Originally posted by TheCookieMonster

Im trying to monitor the Windows Event Log for Event ID 208

My only problem is that I want this 'Problem' to be marked as Resolved in Zabbix pretty instantly, because there wont be a resolved entry in Windows Event Log for it to pick up on, does anyone know how I could do this?

Hi

You can use Zabbix API in conjunction of the ability to close problems manually from this document: https://www.zabbix.com/documentation.../manual_close3

**Yvan** · 30-07-2018, 14:44

Hi,

for the items, do you select log or text ?
I got an error saying not supported but the info message display the event logs..

Thanks

**singk** · 26-08-2018, 21:52

you can try and put in this the Problem expression and do not use Recovery Expression.

{SERVER1:eventlog[Application,,,,15007,,skip].logeventid(15007)}=1 and

{SERVER1:eventlog[Application,,,,15007,,skip].nodata(30)}=0

**Yvan** · 11-09-2018, 10:02

Hi,
This works : {servername:eventlog[Application,,,,15004].logeventid(15004)}=1

i tried to add that in recovery expression :

{servername:eventlog[Application,,,,15005].logeventid(15005)}=1

but it doesnt detect it so incident didnt close.

Thanks for your help,

**sinefile1** · 15-08-2019, 12:28

Hi! I know this is old post, but did anyone finds working solution on these issue?

Ad Widget

Monitor Event Log for Event ID 208 and auto-close problem

Monitor Event Log for Event ID 208 and auto-close problem

Comment

Comment

Comment

Comment

Comment

Comment