Understanding event log monitoring

How does the event log monitoring work?

Event log monitoring is crucial to track specific events across all Windows devices in a unified console. Add event log checks to your Windows server and start monitoring them. Watch a quick video to know how to set it up.

When the particular event occurs, then the event log check is turned to "Down" status and an alert will be triggered for the same.

For an event log check, the following are the mandatory fields:
  • Check Name
  • Log Type 
  • Severity Level
With the basic configuration, alerts will be triggered on the first occurrence of the event, based on the configured log type and severity level.

In advanced configuration, the user has to specify the event ID and the number of occurrences the event will occur. For number of occurrences 'n' greater than 1, the timeout period should be mentioned.

For example, if the number of occurrences is set to 2, the Windows server monitoring agent will notify Site24x7 only when the configured event check occurs 2 or more times. This will move the monitor status to trouble. For consecutive events, alerts will not be sent and the monitor status will continue to be in the trouble state. Only when the number of occurrences becomes less than 2, the monitor will be up again and the agent will continue to look for occurrence of the event 2 or more times.

    • Related Articles

    • Troubleshooting tips for log collection errors

      The following is a list of possible log collection errors and the solutions to fix them: Error message Reason Solution Upload Limit Reached You might have reached the maximum upload limit configured for this log type in the current billing cycle. ...

    • How to collect Applications and Services Logs from Windows event logs

      Site24x7 AppLogs uses the Windows Management Instrumentation (WMI) query on the Site24x7 Server Monitoring agent to fetch event logs. The WMI module requires the registry entry below to read the event logs from the Applications and Services Log ...

    • How do I disable log collection for individual log type

      Let's say you're collecting logs from different sources like Windows event logs, SQL server logs, and Cassandra logs. If you notice that you're reaching the log upload limit for the month you can choose to disable collection for one of the log types, ...

    • Filtering Windows event logs before uploading

      You can filter Windows event logs in the agent side before uploading them to Site24x7. You can configure to eliminate the unwanted event IDs, so that you can skip them while uploading.  You can set these field configuration while Adding a Log Type, ...

    • How do I check and reduce unwanted log usage in my account?

      Log Usage Summary   Log Usage Summary refers to the total space consumed by the AppLogs in Site24x7. You can check Total log usage Daily Usage (represented with date) Log usage by Servers (represented in MB), and Log usage by Log Types (represented ...