NetIQ Sentinel: Add ability to WECS to read from newer "Vista-style" Event Logs

Sentinel lacks an ability that many of your leading competitors offer to grab events from the newer "Windows Vista" style Event Logs on all new Windows operating systems that go beyond the traditional "Application," Security" and "System." There are dozens of new ones. While all are of potential interest to customers, we have particular high profile requirements to read from the ones called "Windows Logs-->Forwarded Events" and another Print Server related one located under "Applications and Services Logs-->Microsoft-->Windows-->PrintService-->Admin"

by: Ted E. | over a year ago | Integrations

Agree - a lot of value in these events. And if you mix this with a tool like sysmon you have a pretty powerful endpoint monitoring tool

by: cameron s. | over a year ago
This feature has been accepted into our backlog to complete

by: Ted E. | over a year ago
Any update on this? The ability to natively capture sysmon event logs is invaluable today.

by: Paul R. | over a year ago
Is this still Planned ? Any ETA for this ?

Thanks

by: David K. | over a year ago

Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.

12

Add ability to WECS to read from newer "Vista-style" Event Logs

Comments