Trying to create custom data source to collect WSUS logs but when I setup custom data source for error.log it does not align in InTrust 11.4 but I am able to align it in Excel. How to setup custom data source for each type of logs below? Also can this be collected in Real-time need to use Traditional (scheduled job) collection. WSUS Windows Internal Database C:\Windows\WID\Log Erro*.log log_*.trc system_health_*.xel C:\windows\system32\logfiles\httperr Httperr*.log C:\Program Files\Update Services\ Logfiles Change.log SoftwareDistribution.log Also for Windows Firewall log can it be collected in real-time.

Hi Payank Shah, I beg your pardon, but the set of logs you mentioned is so manifold that I cannot give you a certain answer. Generally, the text logs can be configured only in "InTrust Manager" and collected only on schedule, not in real-time. Erro*.log, log_*.trc, system_health_*.xel: these three are from SQL folder, aren't they? Error log can be collected by existing InTrust data source named "Microsoft SQL Server Error Log", other two are binary, not text ones. Under Windows Firewall log do you mean "Microsoft-Windows-Windows Firewall With Advanced Security/Firewall" log which can be found in event viewer? (%SystemRoot%\System32\Winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4Firewall.evtx). If yes, then it can be collected both on schedule and in real-time way if you add it in "InTrust Manager" or "InTrust Deployment Manager". All other log names and folders I did not find on my desktop, sorry. I propose the following procedure: Please focus on one log, create a separate topic here on this forum and provide the log example, I mean a dozen of lines from the log . I will grab it and help to create the InTrust Data Source.

InTrust 11.4 Custom Data source

payank shah over 5 years ago

Trying to create custom data source to collect WSUS logs but when I setup custom data source for error.log it does not align in InTrust 11.4 but I am able to align it in Excel. How to setup custom data source for each type of logs below? Also can this be collected in Real-time need to use Traditional (scheduled job) collection.

WSUS

Windows Internal Database

C:\Windows\WID\Log

Erro*.log

log_*.trc

system_health_*.xel

C:\windows\system32\logfiles\httperr

Httperr*.log

C:\Program Files\Update Services\Logfiles

Change.log

SoftwareDistribution.log

Also for Windows Firewall log can it be collected in real-time.

Top Replies

Igor.Ilyin over 5 years ago +1 verified

Hi Payank Shah,

I beg your pardon, but the set of logs you mentioned is so manifold that I cannot give you a certain answer.

Generally, the text logs can be configured only in "InTrust Manager" and…

Parents

0 Igor.Ilyin over 4 years ago

Here comes the third and the last data source for the HTTP errors log.
It is a W3C-like log.

1. Please unpack the zip

2. Use the InTrustPdoImport utility (you have it on DVD) to import the objects to InTrust configuration:

C:\Temp>InTrustPDOImport.exe -import "HTTP Errors Advanced.xml"
Quest InTrust PDO Import Utility version 11.4.0.3868
Copyright 2018 Quest Software Inc. ALL RIGHTS RESERVED.

Importing ...
Import finished.

C:\Temp>InTrustPDOImport.exe -import "HTTP Errors Advanced Gathering Policy.xml"
Quest InTrust PDO Import Utility version 11.4.0.3868
Copyright 2018 Quest Software Inc. ALL RIGHTS RESERVED.

Importing ...
Import finished.

3. Go to the data source named "HTTP Errors Advanced" and in "Settings->Edit" change the path to the one you use on the real system. Finish the wizard.

4. Create a task using the policy named "HTTP Errors Advanced" and the site containing the computer you want to collect from.

5. Run the task

6. Go to Repository Viewer and create a custom search with the filter "Log=HTTPErrors" and columns "When", and Insertion Strings 2 to 13. Review the events.

Thank you, waiting for your feedback.

HTTPErrors.zip
Cancel
Up 0 Down

Reply

Verify Answer

Cancel
0 payank shah over 4 years ago in reply to Igor.Ilyin

Thx Igor for all your help. I finally got to implementing this and two other you provided and they work.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel

Reply

0 payank shah over 4 years ago in reply to Igor.Ilyin

Thx Igor for all your help. I finally got to implementing this and two other you provided and they work.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel

Children

No Data