Log Consolidator
Collect data from the logs and use queries to pre-filter collected event.
To set up a log collector:
-
Navigate to Configuration / Log Consolidator / Collectors and select Create a log consolidator server.
-
Enable the collector.
-
Complete the wizard: provide the service name, enter credentials for accessing logs, select servers to collect log data from, specify a query, and pick a database.
To add a new query:
-
Navigate to Configuration / Log Consolidator / Queries and select Create a log consolidator query.
-
Specify the query.
