cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

winevents configuration example for pulling Lync Server and Application Events

Cory_Wagner
IR Partner
IR Partner
‎03-29-2018 08:43 AM
‎03-29-2018 08:43 AM

winevents configuration example for pulling Lync Server and Application Events

Trying to understand pulling multiple Windows events logs locations in my example I want Lync Server and the Applicaiton Windows events.  Because I am looking for eventID that notifiy's of a soon expiring certificate.

 

ADD SERVER(\windowsserver.domain.local, "eventlognames=Lync Server|Application", ip=10.101.30.242, domain=domain, customer=CustomerID, custom=WinEvents:RemoteServer, sfbsite=CustomerSite, sfbpool=SFBpool.domain.com)

 

Doesn't seem to be working please let me know the correct syntax for two log names.

Add categories:
0 Likes
Reply
3 REPLIES 3
Randy_Andrews
Hero
Hero
‎03-29-2018 11:22 AM
‎03-29-2018 11:22 AM

Re: winevents configuration example for pulling Lync Server and Application Events

Hi Cory,

The Winevents config is set up to only see either the 'Lync Server' or 'Security' logs at this time from Skype servers. We do reference some customizations in our online help to enable other logs to be collected but I do not have a good example at this point. I will follow up internally to see if we have any additional documentation that can be posted to help clarify the process. Stay tuned...

 

Thanks,

Randy

If my answer helped you today, please be sure to mark the 'Accept as Solution' button and click like to help others find the answer, thanks.

Randy Andrews
Senior Professional Services Consultant
MCSA Office 365, MCSE Communications, MCSE Productivity
0 Likes
Reply
Cory_Wagner
IR Partner
IR Partner
‎03-30-2018 10:34 AM
‎03-30-2018 10:34 AM

Re: winevents configuration example for pulling Lync Server and Application Events

Yeah I am looking for event ID 64 in the applicaiton log which gives a warning when one of the certificates in Skype For Business is about to expire.

0 Likes
Reply
ChristopherS
12 Sherpa
‎03-30-2018 12:06 PM
‎03-30-2018 12:06 PM

Re: winevents configuration example for pulling Lync Server and Application Events

 

I wanted to point out that there are other solutions in Prognosis as well that utilize the windows event log.. both out of the box and custom. I use it reguarly.

MPEvent is a record that is included on all deployments I believe and it has a slightly filtered Windows event log on Windows and other records on AIX/Unix/Linux.  HPNonStop has its own record.. but the other platforms share it. It does require I believe SRV in your license or that license code to be embedded to use MpEvent though. 

Quick Example from the system I happen to be on now.. something else to look into possibly. 

image.png


If my answer helped you today, please be sure to mark the resolved button to assist others.

Christopher R Souser - Solution Architect – MSci. PA, CISSP, ITIL.
0 Likes
Reply

IR Forums

 General Collaborate Transact & Infrastructure COVID-19 Updates IR Connect