Editing Custom Reports
Custom reports are listed under the My Reports section, found
in the Reports tab, and the left
navigation pane.
The My Reports section lists all the custom reports created
so far, the hosts that are reported on, and scheduling options. Click on the
report name to view the report. Click the
icon to delete a report. Click the
icon to edit the corresponding custom report configuration details.
Editing an existing Custom Report
Click the
icon to edit an existing custom report.
You can find this icon besides the report listed in the My Reports section in the left
navigation pane, and the Reports tab.
Clicking the
icon opens the Edit Custom Report page.
In the Edit Custom Report page, edit the host and criteria in the Edit Host and Edit Criteria tabs.
- Select the Edit Host tab to edit the hosts or host groups to report on.
- Select the Edit Criteria tab to edit the event filters and message filters. There are two set of event type/severity lists, one list of filters for Windows hosts and the other list of filters for Syslog hosts.
- Edit the filters for the events generated by the hosts or host groups
selected. Edit event type and event severity depending on the specific
events that need to be collected for Windows and/or UNIX hosts.
- You have two options (Basic Options and Advanced) to filter the messages under two tabs.
- Basic Options tab
In the basic option, when multiple values are entered, all the values are considered for filtering events.
- You will find Drop the Logs containing text box to drop the logs containing the message(s).
- You will find Except text box to exclude an event with a specific event log message.
- You will find Event Source text box to filter out events received from a specific event log source.
- You will find User text box to filter out events received for a specific user. This field is effective only for Security (Important) events.
Multiple values can be entered in the text boxes separated by commas.
- Advanced tab
In the advanced option, when multiple values are entered, any of the values or all the values are considered for filtering events depending up on the selection of Match Any or Match All radio buttons.
- You will find Match Any and Match All radio buttons for Drop the Logs containing text box to drop the logs containing the message(s).
- You will find Match Any and Match All radio buttons for Except text box to exclude events with a specific event log message, from filtering out.
- You will find Event Source text box to filter out events received from a specific event log source.
- You will find User text box to filter out events received for a specific user. This field is effective only for Security (Important) events.
Multiple values can be entered in the text boxes separated by commas.
- For
Windows hosts, you can also filter events using Event ID. Choose the Event ID checkbox. With this, the text box and Event ID link get enabled and the Event Type / Event Severity filter selection gets disabled. Enter the Event IDs for which the events need to be collected. If the Event ID filtering is not selected, the Event Type / Event Severity filter selection gets enabled. Select the types of events for which the report needs to be generated, from the list of events under Event Type column.
The event types are:
- Application
- Security
- System
- DNS Server
- File Replication Service
- Directory Service
Select the severity of events for which the report needs to be generated, from the list of severity in the Event Severity row.
The event severity are:
- Information
- Success
- Error
- Failure
- Warning
Any combination of event type and severity is possible and select the appropriate check boxes provided in a matrix format.
The unselected event type and severity will be excluded from the report.
- For
Unix hosts (i.e., Syslog), you can filter events using the Event Type / Event Severity filter selection. Select the types of events for which the report needs to be generated, from the list of events under Event Type column.
The event types are:
- kernel
- user
- mail
- daemon
- auth
- syslog
- lpr
- news
- uucp
- cron1
- authpriv
- ftp
- ntp
- logAudit
- logAlert
- cron2
- local0
- local1
- local2
- local3
- local4
- local5
- local6
- local7
Select the severity of events for which the report needs to be generated, from the list of severity in the Event Severity row.
The event severity are:
- Emergency
- Alert
- Critical
- Error
- Warning
- Notice
- Information
- Debug
Any combination of event type and severity is possible and select the appropriate check boxes provided in a matrix format.
The unselected event type and severity will be excluded from the report.
- Click Save to save the edited report. Click Cancel button to
cancel the edit operation.
Copyright © 2012,
ZOHO Corp. All Rights Reserved.
ManageEngine