Windows Event Log Management :: EventLog Analyzer

Toll Free US: +1 888 720 9500
Intl: +1 925 924 9500

	Solutions Products Downloads Support Company Contact Us Training Store Network Performance Datacenter & Server Management Desktop Management ITIL Product Categories Active Directory Management Application Monitoring Compliance / Log Analysis Customer SupportDesk Desktop Management Facilities Management HelpDesk & Asset Management Managed Services Network Monitoring Traffic Analysis & Network Forensics Product List Free Trials Free Software Price List

EventLog Analyzer

Eventlog & Syslog Management Tool

Solutions for:

System Administrator

EventLog Analyzer is a combined eventlog & syslog management tool.

Pre-built compliance reports for SOX, HIPAA, PCI, GLBA
Alerts and notifications based on eventlogs
Archieving of logs on the EventLog Analyzer server for forensics
Helps tighten security policies in the enterprise

Success Stories
"EventLog Analyzer has made the job of reviewing logs much easier. We save many hours every week."- Jin Ho, Cutera Inc. » Download Free Edition | 30-Day Trial

Overview

Features

Demos

Documents

Downloads

Get Quote

Support

Customers

Syslog Management

Windows Event Log Management

Comprehensive Windows Event Log Monitoring, Analysis, Reporting and Archiving

Windows event log management is an important need in almost all enterprises. Logs need to be archived for the purpose of network auditing and more recently to comply with various regulations such as HIPAA Compliance, GLBA Compliance, PCI Compliance, and Sarbanes-Oxley (SOX or SARBOX) Compliance. Apart from this, system administrators look at event logs as a critical source to troubleshoot performance problems on hosts across the network. The need for a complete event log management solution is often underestimated; leading to long hours spent sifting through tons of event logs to troubleshoot a single problem. Efficient event log analysis reduces system downtime, increases network performance, and helps tighten security policies in the enterprise.

EventLog Analyzer can collect, analyze, report, and archive all event logs received from all the Windows systems in your network. EventLog Analyzer also supports logs received from other syslog supported systems & devices.

Windows Event Log monittoring is one of the main functions of EventLog Analyzer. Some of the many Windows Event Id's recognized by EventLog Analyzer is listed below:

Windows Event ID	Windows Vista Event ID	Event Type	Description
512, 513, 514, 515, 516, 518, 519, 520	4608, 4609, 4610, 4611, 4612, 4614, 4615, 4616	System Events	Identifies local system processes such as system startup and shutdown and changes to the system time
517	4612	Audit Logs Cleared	Identifies all the audit logs clearing events
528, 540	4624	Successful User Logons	Identifies all the user logon events
529, 530, 531, 532, 533, 534, 535, 536, 537, 539	4625	Logon Failures	Identifies all the failed user logon events
538	4634	Successful User Logoff's	Identifies all the user logoff events
560, 562, 563, 564, 565, 566, 567, 568	4656, 4658, 4659, 4660, 4661, 4662, 4663, 4664	Object Access	Identifies when a given object (File, Directory, etc.) is accessed, the type of access (e.g. read, write, delete) and whether or not access was successful/failed, and who performed the action
612	4719	Audit Policy Changes	Identifies all the changes done in the audit policy
624, 625, 626, 627, 628, 629, 630, 642, 644	4720, 4722, 4723, 4724, 4725, 4726, 4738, 4740	User Account Changes	Identifies all the changes done on an user account like user account creation,deletion, password change, etc.
(631 to 641) and (643, 645 to 666)	4727 to 4737, 4739 to 4762	User Group Changes	Identifies all the changes done on an user group such as adding or removing a global or local group, adding or removing members from a global or local group, etc.
672, 680	4768, 4776	Successful User Account Validation	Identifies successful user account logon events, which are generated when a domain user account is authenticated on a domain controller
675, 681	4771, 4777	Failed User Account Validation	Identifies unsuccessful user account logon events, which are generated when a domain user account is authenticated on a domain controller
682, 683	4778, 4779	Host Session Status	Identifies the session reconnection or disconnection

Using EventLog Analyzer you can archive or store these Windows event logs, and also generate event log reports in real-time. You get instant access to wide variety of reports for events generated across hosts, users, processes, and host groups. You can also obtain pre-defined compliance reports to meet HIPAA, GLBA, PCI, and Sarbanes-Oxley audit requirements.

Syslog Management

Enterprise Management & Security Products
Active Directory Management Application Monitoring Asset Management Customer SupportDesk Desktop Management EventLog Analyzer Facilities Management Firewall Analyzer Free Windows Tools HelpDesk Hosted Website Monitoring Service MSP Solutions	Network Configuration Management Network Monitoring Network Security Scanner Patch Management Password Management Self-Service Password Management Storage Management Software Switch Port & IP Address Management Traffic Analysis & Network Forensics VoIP Monitoring WiFi Manager

	All Products Feedback

Blogs |

Forums

Features

Securing Enterprise IT Assets - System Administrator

Security and Regulatory Compliance of Enterprise IT Assets

If you are System Administrator of an enterprise, you would like to appraise yourself of the events of your enterprises server resources, applications, and the audit readiness for regulatory compliance.

EventLog Analyzer addresses your requirement. It provides a detailed view of the events of your enterprises server resources and applications.

The dashboard provides a snapshot view of what is happening in your servers and applications.

It displays the graphical overview of the total events. The total events are displayed category wise distributed among the host groups and event types.

The statistical snapshot part displays the health and the event details of all the host resources and the event details of all the applications.

From the statistical display you can quickly find out the host resource details like

Type of the host
State of the host (enabled/disabled)
Name of the host
Host group
Current status of the host
Category wise host events
Total events count
Quick view of latest events

you can quickly find out the application resource details like.

Name of the application
Category wise application events
Total events count
Advanced search of application events

This gives a comprehensive yet concise view of the host and application resource events.

For the regulatory compliance, you have reports covering SOX, HIPAA, GLBA, and PCI. EventLog Analyzer is flexible enough to allow you to configure new compliances of your choice. You can view the latest security events received (formatted or raw logs) from a particular device.

EventLog Analyzer lets you to filter the events before storing in the database, thereby reducing the load on database.

There are slew of pre-built reports available in EventLog Analyzer. You have Top N Reports, which give event reports based on top hosts, users, and processes etc. You have Trend Reports, which give trend reports based on event severity, event type, and alerts. You can always drill down to any level of details (unto raw log level) you want. EventLog Analyzer allows you to create the network reports the way you would like to have it. It is flexible enough to allow you to customize the reports. You can schedule the reports to be genrated at pre-set intervals.

EventLog Analyzer lets you to create the alert profiles to track various events.

EventLog Analyzer lets you to archive the log events for regulatory compliance audit and forensic purposes.

	AdventNet, Inc. All rights reserved. Trademarks \| Privacy Policy \| Site Map \| Contact Us \| Careers \| Tell Us

	Edit Reseller