ms_ad_security_audit_target_account_name does not function properly. It does not show up under the fields list or extracted data nor can you create your own that is similar and have log insight extract the data.
Content Packs are source-centric interpretations that help you make sense of your unstructured machine data.
I hope someone who can make content pack for Kemp load balaning
This is very basic, but if you need to troubleshoot PernixData (Still alive and kicking), you can use this content pack.
In the vsphere content pack, there is a pane under vcenter server overview where it Counts "vcenter servers integrated". This Count is very wrong, as it Counts occurences of the Word vcenter-server (despite showing it should Count Sources) instead of unique hostnames. In my installation it therefore shows 71 vcenters, instead of the 4 it should be. The reason is that the loginsight also receives logs regarding DRS rules,... more »
We have MS Exchange environment with 8 Exchange servers. We have Log Insight 4.3 with MS Exchange CP 3.2. We have configured it according to attached documentation with regards to some doubts in another forum thred here. Now some dashboards are empty or contain wrong data: 1. Information on widget Microsoft - Exchange > User information > Number of users per server is wrong: Total number of users is correct (after... more »
We have MS Exchange environment with 8 Exchange servers. We have Log Insight 4.3 with MS Exchange CP 3.2. While configuring it according to attached documentation we have encountered following problems that I ask for clarification: 1. Agents powershell scripts run on one or more MS Exchange servers 1.1 Observation: Running both scripts exchange_wrapper.ps1 and exchange_mailbox_wrapper.ps1 seems to give the same output... more »
What ever happened to the Puppet Enterprise content pack that VMware created for vRealize Log insight?
Now that Puppet is a first class citizen in vRA, I think this plugin is even more important than ever.
Upon request from our security people, I have made a PowerShell module that collects non-log data from AD and pushes it as logs to the loginsight server. This way they can have a Dashboard of data that is either not accessible from logs, or where log retreival would mean a massive search from all data available, and thus very slow searches. I have built this in this way: 1. Powershell scripts running as scheduled jobs... more »
Had en issue - created an content pack 🙂
So here it is the HP OA content pack. All there is required is to set HP OA til send syslog to log insight.
It has three dashboards - Overview, changes and authentication.
Overview gives you quick insight to changes and problems in your environment.
Changes - is all about changes made by humans
Authentication - shows login attempts and failures
Veeam has issued a content pack for their popular product Veeam Backup & Replication with several dashboards and field extractions.
Still, Agent has no configuration and does not collect Veeam events.
Simple as it is, it could be useful to have Agent configuration ready here:
Yes, that's it :)
Should I really attach it as a separate content pack here?
The Log Path in the default Config is empty. The Logs for the vAPI Endpoint can be found in : /var/log/vmware/vapi/endpoint/
Trying to get log insight to grab the C:\ProgramData\VMware\VDM\logs\pcoip_server_2017_04_24_0000111c.txt file so that we can draw a line from a VDI session to a human on the other end of a zero client (we are a school district - kids are abusive on the equipment) There is a handy line in this file that tells me the IP of the zero client (man DNS resolution would be nice) but I can work with this because I have my DHCP... more »
most HA information's are at the moment focused on VM HA Events. But the FDM Log analysis fur all the hist states is also very interesting.
I created some examples for the enhancement.
LI version: 3.6
After upgrading content pack on 3.6 Log insight from 3.6 to 4.0 result is at being all dashboard removed // disappear.
Is this because 4.0 CP should be run only on 4.0 and higher LI or?
Is there a way how to recover previous dashboards configuration?
Hello, I am wondering if any one has created or know of a content pack for Cisco MDS switches