![]() ![]() ![]() |
Click the Host Details link to view the details on the EventLog Server and also the details of the hosts from which EventLog Analyzer is currently collecting event logs.
The Add New Host link lets you add
a new host to this list. Select multiple hosts and click the Delete
Host link to delete them all in a single click. There is a Search option to search a particular host from the list of hosts available.
The Hosts Details table lists all the hosts from which event
logs are being collected.
Field/Icon | Description |
---|---|
![]() ![]() ![]() ![]() ![]() ![]() |
This icon tells you whether this host is Linux/ Windows/ Cisco Routers / Switches. |
![]() |
Click this icon to edit attributes for this host |
![]() ![]() |
Click this icon to enable or disable collecting event logs from this host |
HostName |
The host name of the machine from which event logs are collected |
HostIPAddress |
The IP Address of the host. |
Delete |
Click the ![]() |
Status |
The status of log collection from this host. Hover over each icon to see the current status. |
NextScanOn |
Provides the time at which the next scan is scheduled. This is set while adding the host, where the field Monitor Interval in minutes decides the next schedule of the scan, the default being 10 minutes. The status of the hosts and performing unscheduled scans using the ScanNow link, impacts the next scanning schedule. |
LastMessageOn |
Displays the last time at which the host sent an event log to the server. |
Action |
The ScanNow link provides an option to do an
unscheduled scan for Windows and AS/400 machines. Until the scan is complete, Scanning The PingNow link pings the Unix/Linux machines to ascertain connectivity is intact. |
Click the
icon next to the host to edit the log collection details for that host. Depending
on the type of host, the following details can be edited:
Host Type | Host Detail | Description |
---|---|---|
Windows | Display Name | The name that is displayed for the host. |
Login Name/ Password | The login details (credentials) needed to collect event logs from this host. You need to have Administrator privileges, and for applying the change of credentials to all the hosts in the particular domain, displayed in the field Domain Name, you need to select the option Apply login name and password changes to all domain(displayed below) authenticated hosts. | |
Domain Name | The default domain name to which the host belongs is displayed and it is non-editable. The field is optional. Select the check box Domain Name, the domain name field becomes editable and the option Apply authentication to all hosts in this domain with selction check box appears below the field. Enter the domain name of the host in the Domain Name field. If you want to use the host credentials to all the hosts in the domain to access the hosts and collect logs, select the check box. | |
Host Group | Select the Host Group to which the hosts need to be changed to. Click the ![]() |
|
Monitor Interval | The number of minutes after which the host will be polled for new event logs. The option Apply Monitor Interval to all hosts in this Group with selction check box is available below the field. If you want to apply monitor interval to all the hosts in this host group to access the hosts and collect logs, select the check box. | |
Unix/ Cisco Device/ Any Syslog Device |
Display Name | The name that is displayed for the host. |
Host Type | Select the Host Type to which the hosts need to be changes to. Click the ![]() |
|
Display Icon | Click on the Change Image link to change the icon that is displayed. You can select from a list of icons ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
|
Host Group | Select the Host Group to which the hosts need to be changed to. Click the ![]() |
|
Syslog Listener Port | The listener port on which EventLog Analyzer is listening for event logs from this host. This is also the same port on which this host is forwarding event logs to EventLog Analyzer. |
Once you have made the changes, click Save Host Details to save the new settings for this host.
![]() |
When a host is deleted, it is removed from the database, meaning all host-related data is permanently deleted. |
Click on any host to view the event summary for that host.
The Host Details link also lists the ports on which EventLog Analyzer is listening for event logs. By default, Listening Ports 513 and 514 is added. When you add a UNIX host, and specify a different port other than 513 or 514 to collect logs, that port is automatically added to this list.
![]() |
Any newly added syslog port will be displayed under Listening Ports only after a couple of minutes. |
![]() ![]() ![]() |