- Free Edition
- What's New?
- Quick Links
- Log Management
- Application Log Management
- Application log monitoring
- IIS log analyzer
- IIS web log analyzer
- IIS FTP log analyzer
- IIS log parser
- VMware log analyzer
- Hyper V event log auditing
- SQL database auditing
- SQL server auditing
- MySQL log analyzer
- Apache log analyzer
- DHCP server auditing
- Database activity monitoring
- Database auditing
- Oracle database auditing
- IT Compliance Auditing
- IT Compliance Auditing
- SOX Compliance Audit
- GDPR Compliance Audit
- ISO 27001 Compliance Audit
- HIPAA Compliance Audit
- PCI Compliance Audit
- FISMA Compliance Audit
- GLBA Compliance Audit
- GPG Compliance Audit
- ISLP Compliance Audit
- FERPA Compliance Audit
- CCPA Compliance Reports
- CCPA Compliance Software
- NERC Compliance Audit Reports
- Cyber Essentials Compliance Reports
- Reports for New Regulatory Compliance
- Customizing Compliance Reports
- PDPA compliance audit reports
- CMMC Compliance Audit
- SIEM
- Security Information and Event Management (SIEM)
- Threat Intelligence
- STIX/TAXII feed processor
- Server Log Management
- Event Log Monitoring
- File Integrity Monitoring
- Linux File Integrity Monitoring
- Threat Whitelisting
- Advanced Threat Analytics
- Security Log Management
- Log Forensics
- Incident Management System
- Application log management
- Real-Time Event Correlation
- Detecting Threats in Windows
- External Threat Mitigation
- Malwarebytes Threat Reports
- FireEye Threat Intelligence
- Linux Log Analyzer
- Network Device Monitoring
- Network Device Monitoring
- Router Log Auditing
- Cisco Logs Analyzer
- VPN log analyzer
- IDS/IPS log monitoring
- Solaris Device Auditing
- Monitoring user activity in routers
- Monitoring Router Traffic
- Switch Log Monitoring
- Arista Switch Log Monitoring
- Firewall Log Analyzer
- Firewall Traffic Monitoring
- Windows Firewall Auditing
- SonicWall Log Analyzer
- H3C Firewall Auditing
- Barracuda Device Auditing
- Palo Alto Networks Firewall Auditing
- Juniper Device Auditing
- Fortinet Device Auditing
- pfSense Firewall Log Analyzer
- NetScreen Log Analysis
- WatchGuard Traffic Monitoring
- Check Point Device Auditing
- Sophos Log Monitoring
- Huawei Device Monitoring
- HP Log Analysis
- F5 Logs Monitoring
- Fortinet log analyzer
- Endpoint Log Management
- System and User Monitoring Reports
- More Features
- Resources
- Product Info
- Related Products
- Log360 (On-Premise | Cloud) Comprehensive SIEM and UEBA
- ADManager Plus Active Directory Management & Reporting
- ADAudit Plus Real-time Active Directory Auditing and UBA
- ADSelfService Plus Identity security with MFA, SSO, and SSPR
- DataSecurity Plus File server auditing & data discovery
- Exchange Reporter Plus Exchange Server Auditing & Reporting
- M365 Manager Plus Microsoft 365 Management & Reporting Tool
- RecoveryManager Plus Enterprise backup and recovery tool
- SharePoint Manager Plus SharePoint Reporting and Auditing
- AD360 Integrated Identity & Access Management
- AD Free Tools Active Directory FREE Tools
EventLog Analyzer collects event logs from distributed Windows devices. Agent less log collection is incorporated in EventLog Analyzer architecture. Collect Windows event logs with agents is added to facilitate easy log collection across WAN and through Firewall.
Note: Log collection using Agent is optional. By default, EventLog Analyzer deploys agent-less log collection. If your enterprise IT security policy does not allow opening WMI ports, etc., you can optionally use the Agents to collect the logs from devices. Agent has to be installed in one of the devices and it can collect the logs upto 25 devices within the LAN.
Agent for event log collection
EventLog Analyzer Agent collects event logs generated by Windows devices. Installation and set up of EventLog Analyzer Agent to collect and report on event logs from Windows devices is a simple process. When the agent is installed, the result status 'Success/Failed <with reason>/Retry' will be displayed. In case of failure of automatic installation of agent, manual installation is possible. The agent can be deployed in any server in the network or sub-net. It is installed as a 'Service' in that server.
Agents will be automatically discovered by EventLog Analyzer server and the agents will automatically collect the logs from Windows devices. The agent remotely collect the logs. It pre-processes the logs and transfers to the server in real-time and in an uninterrupted manner.
The agent can collect the logs from approximately 25 devices. Devices can be assigned to any agent for log collection as required and also logs can be directly collected by the EventLog Analyzer server with out the agent. Devices can be unassigned from one agent and assigned to another devices as per your requirement.
In case an agent is deleted or uninstalled, log collection for all the devices assigned to agent will be automatically and seamlessly switched to agent less direct collection mode. If the device, in which the agent is installed, is deleted, in that case also, log collection for all the devices assigned to that particular agent will be automatically and seamlessly switched to agent less direct collection mode.