Table of Contents
- Getting Started
- Agent-Based Management
- Common Tasks
- Data Providers
- Directory Services
- Auditing
- Hosts
- Templates
- Template Properties
- Batch Update Templates
- Assign Templates
- Log Management Templates
- SCAP Compliance Monitor
- Active Directory User Monitor Templates
- File and Directory Monitor Templates
- Windows Monitor Templates
- CPU Monitor Template
- Memory Monitor Template
- Disk Space Monitor Template
- Account Lockout Monitor Template
- Audit Policy Monitor Template
- Logon As Monitor Template
- Logon Monitor Template
- Performance Counter Monitor Template
- PowerShell Template
- Process Monitor Template
- RDP Session Monitor Template
- Registry Value Monitor Template
- Service Monitor Template
- SMART Disk Monitor Template
- System Security Monitor Template
- Windows Update Template
- WMI Query Template
- Task Scheduler Template
- Clock Synchronization Template
- Defragment NTFS Disks Template
- Network and Application Monitor Templates
- SSL Certificate Monitor Templates
- Database Templates
- Email Monitor Templates
- SNMP Monitor Templates
- Windows Accounts Templates
- Monitors
- Reports
- Auto-Configurators
- Filters
- Actions
- Schedules
- Environment Variables
- Options
- SNMP
- SSH Shell
- Syslog
- System Reset
- Shared Views
- Active Directory User and Group Filters
- Assign Actions
- Assign Azure Audit Logs
- Assign Consolidated Logs
- Assign Directories
- Assign Disks
- Assign Event Logs
- Assign Files
- Assign Services
- Assign Shares
- Auto-Config Host Assignment Properties
- Define CSV and W3C Log Entry Columns
- Define Log Entry Columns
- Define Log Entry Columns with Regular Expressions
- Executable Status
- Executable Timeline
- Explicitly Assigned Logs
- File Explorer
- General Executable Properties
- Report Columns
- Report Date/Time Ranges
- Report Security Event Log Filters
- Select Folder or File
- Target Files and Sub-Directories
- Command Line Interface
- Server Configuration
- Agent Configuration
- Troubleshooting
- Terminology
Corner Bowl Server Manager
SIEM, IPS, Server Monitoring, Uptime Monitoring and Compliance Software
Assign Consolidated Logs
By default, when a host or host group is assigned to a log report, the configured Event Log Consolidation template is calculated for each host and log then logs that reside in the Log Database applied to the report. The Explicitly Assigned Logs tab, found in various Report property views, enables you to assign de-commissioned server logs, archived logs and auxiliary logs (backed up consolidated logs), to the report. In addition, Event Log Reports also include support to assign native Event Log File backups.
Important
Native Event Log File backups or EVTX files are significantly slower to parse when compared to the Log Databases. Unless required for compliance, we suggest using the Log Database over Native Event Log files.
To explicitly assign logs in the archive or auxiliary log databases:
- From the Explicitly assigned consolidated logs controls, click the Add
button. The Select Logs view displays.
- Navigate to the specific logs you would like to include in the report, check the logs, then click OK.
To remove previously assigned consolidated logs:
- Under the Explicitly assigned consolidated logs view, select each log you would like to remove then click the Minus
button.
- To clear all logs, press the Clear
button.
To explicitly assign native Event Log files:
- From the Explicitly assigned Event Log file backups controls, click the Add
button. Select File dialog displays.
Note
Since the Management Console is a client that can be installed anywhere, the Select File dialog is a proprietary view that displays the file system from the service's point of view.
- Navigate to the specific log you would like to include in the report, then click OK.
Important
Compressed files are automatically expanded. Encrypted files are decrypted using the key assigned to the assigned Event Log File backup template. If an Event Log File template is not assigned to the host, the file must decrypted prior to running the report.
To remove previously assigned Event Log files:
- Under the Explicitly assigned consolidated logs view select each log you would like to remove then click the Minus
button.
- To clear all logs, press the Clear
button.