Use the Eventlog Item monitor to watch for a specific entry in a given Eventlog. This is usefull when you wish to trigger an event on a specific program event as a raid failure or brute force attack.
The scanner will keep track of the checks (like the eventlog error monitor), so once an entry has been passed by - it will not be passed again, ensuring no faulty registrations occur.
You can trigger an event after a single, or repeated entry and take action accordingly, ensuring that proper measures are taken on critical Windows Events.
Further information about
eventlog items, can be read in the online help.
|