Skip to main content

Custom Windows Event Logs - Integration

Custom Windows Event Logs

Collect and parse logs from any Windows event log channel with Elastic Agent.

The custom Windows event log package allows you to ingest events from any Windows event log channel. You can get a list of available event log channels by running Get-WinEvent -ListLog * | Format-List -Property LogName in PowerShell on Windows Vista or newer. If Get-WinEvent is not available, Get-EventLog * may be used. 

By executing this command in the powershell(administrator), it will list the log names that is being used.

image.png

 

Add a channel name in the Channel Name text field (e.g Application). 

 

 


No Comments
Back to top