General Log Insight Q&A

syslog timestamp not working

Hi

 

I have the below three syslog entries. As it can be seen the timestamp from LI (the first one), does not match the one from the syslog msg. (This also affects the sort order in Log Insight. Making it hard to troubleshoot) Why?

 

I'm think it might be at the source the problem is, but I cannot see what you be wrong with this syslog msg.

 

2018-04-2510:28:46.315

2018-04-25 10:28:26 10.65.2.14 Passwordstate: Password State Admin (xxx\zzz) added Michael Ryom (xxx\yyy) to the Security Group 'user group'. Client IP Address = 2.2.2.2

 

2018-04-2510:28:46.314

2018-04-25 10:28:26 10.65.2.14 Passwordstate: Password State Admin (xxx\zzz) added new user Michael Ryom (xxx\yyy). Client IP Address = 2.2.2.2

 

2018-04-2510:28:46.314

2018-04-25 10:28:41 10.65.2.14 Passwordstate: Successful Active Directory login for UserID 'xxx\yyy' from the IP Address '1.1.1.1'. Client IP Address = 2.2.2.2

Tags

Voting

3 votes
Idea No. 577