User Tools

Site Tools


data_core:windowseventlog

Data Core Event Source/Sink: Windows Event Log

Overview

Windows Event Log can be employed by data core as both a source of events and repository.

Event Message Structure

The windows event log record is converted to the Data Core Event Message structure. An attempt is made to parse the formatted Windows Event description, however this is dependent on windows context format files which may not be accessible. In this case, the raw message is used.

Requirements

Administrator Privileges

In order to write to Windows Event Log, the Event Sink requires elevated privileges (i.e. should run under an account belonging to the local server's Administrator group).

data_core/windowseventlog.txt · Last modified: 2017/05/30 09:19 by su