Trigger for windows Eventlog
Hello,
I'm aware of I'm not getting zabbix's expressions too clearly to fully uderstand them, so I'm asking for help.
I tried use this somehow: https://www.zabbix.com/forum/zabbix-...-logs-triggers or https://www.zabbix.com/documentation...agent/win_keys or anything, but still can't get working trigger...
I have template Windows Eventlog, and I'm collecting 4 kind of logs:
It works lovely, but as you see i want to make trigger for system eventlog.
I want to create trigger to create a problem when system log with eventid 41 is collected (system booted after not being closed properly) in case of user forced computer off or in case of bluescreen (that event id shows in that case too + another event for Microsoft-Windows-WER-SystemErrorReporting with EventID=1001 after few minutes, lets say 5)
I will be grateful for any hint
I'm aware of I'm not getting zabbix's expressions too clearly to fully uderstand them, so I'm asking for help.
I tried use this somehow: https://www.zabbix.com/forum/zabbix-...-logs-triggers or https://www.zabbix.com/documentation...agent/win_keys or anything, but still can't get working trigger...
I have template Windows Eventlog, and I'm collecting 4 kind of logs:
It works lovely, but as you see i want to make trigger for system eventlog.
I want to create trigger to create a problem when system log with eventid 41 is collected (system booted after not being closed properly) in case of user forced computer off or in case of bluescreen (that event id shows in that case too + another event for Microsoft-Windows-WER-SystemErrorReporting with EventID=1001 after few minutes, lets say 5)
I will be grateful for any hint
Attached Files