Help Document

Device Management

The devices to be monitored by Log360 Cloud can be managed in this section. Devices can be added, edited, or deleted. All the devices that are being monitored can be viewed. The device management page contains two tabs namely Windows Devices and Syslog Devices.

Windows Devices

  1. Add a Windows Device
  2. Update a Windows device
  3. Enable/Disable a Windows device
  4. Delete a Windows device
  5. Change monitor interval for a Windows device
  6. Configure Event Source files
  7. Bulk device updation

Add a Windows Device

To add a new Windows device, follow the steps given below.

  • Ensure Log360 Cloud agent is installed on at least one Windows device in your network.
  • Note:
    • When a domain is added in Log360 Cloud, all devices in the domain will be auto discovered and listed on clicking the +Add device(s) button on the Device Management page (Settings → Configurations → Devices). Alternatively, you can install the Log360 Cloud Agent on a domain machine for auto discovery of all devices in the domain.
    • When you rename an AD device in domain, the device name automatically gets renamed in device management too.
  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Devices management

    Devices are displayed with the following icons: Search, Enable, Disable, Filter Change Monitor time interval, and Delete. The Filter option lets you choose the devices for reports by their status (enabled/disabled), state (active/inactive/decommissioned) and device group.

    Devices management

  • Select the Windows Devices tab and click the + Add Device(s) button.
  • Devices management

  • Select a category and choose the devices by ticking the box corresponding to the device name.
  • Devices management

  • Select a Agent from the drop-down list and click Add.
  • Alternatively, you can configure a Windows device manually by clicking on the + Configure Manually in the top right corner of the pop-up window.
  • Devices management

  • In the Device field, provide the name of the device that you wish to add. Then, provide the Username and Password in the respective fields and click the Verify Credential button.
  • Devices management

  • After verifying the credentials, click the Add button.

Now the devices are successfully added to Log360 Cloud.

Enabling Historic Log Collection

To enable historic log collection,

  • Navigate to Settings > Admin > Product Customization > Product Settings.
  • Select Enabled under Historic Log collection.
  • Click Save.

Enabling Historic Log Collection

There are two ways to add a device with historic log collection:

  1. By manual configuration
  2. By adding from domain

Add a device using manual configuration:

  • Navigate to Settings > Configuration > Log Source Configuration > Devices.
  • Click Add Device(s) on the top right corner.
  • Click Configure manually.
  • After filling in the fields, hover and click the icon on the right and enable historic log collection.
  • You can choose between three options as shown.
  • Select Collect Logs from current Time if you want Log360 Cloud to collect only logs from now.
  • Enabling Historic Log Collection

  • You can customize log collection by specifying the number of hour(s)/day(s)/week(s)/month(s).
  • Enabling Historic Log Collection

  • Select Collect all historic logs if you want Log360 Cloud to collect all logs.
  • Enabling Historic Log Collection

  • Click Apply.
  • Click Add.

Add a device from domain:

  • On the main page, select Add Device(s).
  • Choose the required domain/workgroup from the drop-down menu.
  • Enabling Historic Log Collection

  • Hover and click the icon on right side of each added device.
  • Historic Log Collection pop-up opens up.
  • You can choose between three options similar to manual configuration.
  • Click Apply.
  • Enabling Historic Log Collection

  • Click Add.

Update a Windows device

To update an existing Windows device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Devices management

  • Choose the Windows Devices tab and click the icon corresponding to the desired device.
  • Devices management

  • In the window that pops-up, make the necessary modifications.
  • update-devices-management

  • You will be able to refresh the IP from the console without specifying the new IP manually.
  • You can manually change the IP in case there are any issues with the IP refresh.
  • To modify the authentication credentials, provide a Username and Password in the respective fields and click Verify Credentials. Note that the agent login credentials are used when no authentication credentials are provided.
  • Click AD details to view object GUID - The unique identifier for a Domain object.
  • Click the Update button.

Now the devices are updated successfully.

Enable/Disable a Windows device

To enable/disable an existing Windows device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Devices management

  • Choose the Windows Devices tab and select the required devices by ticking the box corresponding to the device.
  • Devices management

  • Click the Manage button and select Enable device(s)/Disable device(s) from the drop down list.

Now the Windows device has been enabled/disabled successfully.

Delete a Windows device

To delete an existing Windows device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Devices management

  • Choose the Windows Devices tab and select the required devices by ticking the box corresponding to the device.
  • Devices management

  • Click the Manage button and select Delete device(s) from the drop down list.
  • Click Yes to confirm the action.
  • delete-a-windows-device

    Now the selected Windows devices are deleted successfully.

Change monitor interval for a Windows device

To change monitor interval for a Windows device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Choose the Windows Devices tab and select the required devices by ticking the box corresponding to the device.
  • Click the Manage button and select Change Monitor Interval from the drop down list.
  • In the window that appears, choose the new monitor interval and click Update.
  • You can select multiple devices and configure them for either Real-time log collection (or) Scheduled collection with similar monitoring interval. In Log360 Cloud lets you collect logs from up to 25 devices in real time (agent-based and agent-less log collection combined).

    change-monitor-interval-for-Windows-device

Now the monitor interval for the selected devices are updated successfully.

Configure Event Source files

To configure event source files for a Windows device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Devices management

  • Choose the Windows Devices tab and click the icon-configure icon corresponding to the desired device.
  • Devices management

  • In the window that pops-up, select the required types of event source files by ticking the corresponding boxes.
  • configure-event-source-files

  • After making the selection click Configure.

Now the event source files is configured successfully.

Note: "C$" should be enabled in remote device in order to configure event source files.

Bulk device updation

How to Bulk update credentials

  • Go to Settings → Devices → Windows devices → click on the ⋮ icon → select credentials
  • Devices management

    Update your user name and password. Click on Save

    Devices management

How to bulk refresh IP

  • Go to Settings → Devices → Windows devices → click on the ⋮ icon → select Refresh IP
  • Devices management

    Devices management

Click yes in the Confirm Action pop-up

Syslog Devices

  1. Add a Syslog device
  2. Update a Syslog device
  3. Enable/Disable a Syslog device
  4. Delete a Syslog device
  5. Configure Auto Log Forward
  6. Bulk refresh IP

Add a Syslog device

To add a new Syslog device, follow the steps given below.

  • Ensure Log360 Cloud agent is installed on at least one Windows device in your network, and the Syslog devices to be monitored are configured to forward logs to the agent. Click here to learn how to configure a Syslog device. Click here to learn how to configure auto log forwarding.
  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Devices management

  • Select the Syslog Devices tab and click the + Add Device(s) button.
  • Select a Agent from the drop-down list and enter the names of the devices in the given field. Then click Add to add the devices. Alternatively, you can click Discover & Add to discover and add the available devices automatically.
  • add-syslog-device

  • If you chose Discover and Add, follow the given steps.
  • Choose the required method of discovery by selecting the appropriate radio button and provide the required values. Click Next.
  • Now select SNMP Credential for Discovery by ticking the box against your choice. You can also add credential by clicking the + Add Credential button. Click Scan.
  • Now a list of discovered devices will be displayed. Select the desired devices by ticking the box corresponding to the device. Click Add Device(s).

Now the devices are successfully added to Log360 Cloud.

Update a Syslog device

To update a Syslog device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Choose the Syslog Devices tab and click the icon-edit icon corresponding to the desired device.
  • In the window that pops-up, make the necessary modifications.
  • Click the Update button.

Now the Syslog device has been updated successfully.

Enable/Disable a Syslog device

To enable/disable an existing Syslog device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Choose the Syslog Devices tab and select the required devices by ticking the box corresponding to the device.
  • Click the Manage button and select Enable device(s)/Disable device(s) from the drop down list.
  • Now the Syslog device has been enabled/disabled successfully.

Delete a Syslog device

To delete an existing Syslog device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Choose the Syslog Devices tab and select the required devices by ticking the box corresponding to the device.
  • Click the Manage button and select Delete device(s) from the drop down list.
  • Click Yes to confirm the action.

Now the selected Syslog devices are deleted successfully.

Configure Auto Log Forward

To configure Auto Log Forward, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Choose the Syslog Devices tab and select the required devices by ticking the box corresponding to the device.
  • Click the Configure Auto Log Forward button.
  • In the window that pops-up, provide the necessary values and click Verify and Update.
  • configure-auto-log-forward-01

The Auto Log Forward is now configured successfully.

Bulk refresh IP

How to bulk refresh IP

  • Go to Settings → Devices → Syslog devices → click on the ⋮ icon → select Refresh IP
  • configure-auto-log-forward-01

    Click yes in the Confirm Action pop-up

    configure-auto-log-forward-01

Other Devices

  1. Add an ESXI device
  2. Update an ESXI device
  3. Enable/Disable an ESXI device
  4. Delete an ESXI device
  5. Bulk refresh IP

Add an ESXI device

To add a new ESXI device, follow the steps given below.

Note: Ensure Log360 Cloud agent is installed on at least one Windows device in your network, and the ESXI devices to be monitored are configured to forward logs to the agent. Click here to learn how to configure a ESXI device.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Add an ESXI device

  • Select the Other Devices tab and click the + Add Device(s) button.
  • Click on Device Type and select ESXI. Enter Device Name.
  • Select a Agent from the drop-down list and enter the name or the IP address of the device in the given field. Then click Add to add the device.
  • Add an ESXI device

Update an ESXI device

To update a ESXI device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Choose the Other Devices tab and click the icon-edit icon corresponding to the desired device.
  • Add an ESXI device

  • In the window that pops-up, make the necessary modifications.
  • Add an ESXI device

  • Click the Update button.

Now the ESXI device has been updated successfully.

Enable/Disable a ESXI device

To enable/disable an existing ESXI device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Choose the Other Devices tab and select the required devices by ticking the box corresponding to the device.
  • Add an ESXI device

  • Select Enable device(s)/Disable device(s) from the icons on the Table Tool bar as shown.
  • Add an ESXI device

  • Now the ESXI device has been enabled/disabled successfully.

Delete an ESXI device

To delete an existing ESXI device, follow the steps given below.

  • Open Log360 Cloud and select the Settings tab. Then navigate to Devices under Configuration.
  • Choose the ESXI Devices tab and select the required devices by ticking the box corresponding to the device.
  • Add an ESXI device

  • Click the Delete device(s) icon in the Table Tool bar.
  • Add an ESXI device

  • Click Yes to confirm the action.
  • Add an ESXI device

Now the selected ESXI devices are deleted successfully.

Bulk refresh IP

How to bulk refresh IP

  • Go to Settings → Devices → Other devices → select the devices for which IP needs to be updated.
  • Add an ESXI device

  • Click on : icon and select Refresh IP address option from the dropdown menu to refresh IP.
  • Add an ESXI device