I'm trying to monitor the event log on a clustered node for any changes in virtual machine location. I've found the correct location and event ID I want to be notified for but the log is not in the list of the Windows API Event Log defaults. The log I need is the Microsoft-Windows-FailoverClustering/Operational log.
Thanks,
Scott
Article Comments
Attention: This article is a record of a conversation with the Paessler support team. The information in this conversation is not updated to preserve the historical record. As a result, some of the information or recommendations in this conversation might be out of date.
Hello,
Thank you for your message.
Regarding your demand, I'm afraid that the event log sensors are not able to monitor a specific log file. However, you can develop a script which uses the PowerShell cmdlet Get-WinEvent -LogName "" to get the entries from it, and then return the number of entries which match your filter(s).
Here is the documentation of the Get-WinEvent cmdlet: https://docs.microsoft.com/en-us/powershell/module/microsoft.powershell.diagnostics/get-winevent?view=powershell-7.1
To execute the script in PRTG, you can use the EXE/Script or EXE/Script Advanced sensor.
I invite you to have a look to the manual regarding custom sensors: https://www.paessler.com/manuals/prtg/custom_sensors
Kind regards.
Nov, 2020 - Permalink