Simple user-friendly features make our application as one of the most preferred one in the market. Here, in this blog, we shall be posting on such user friendly features available in our product, which should sound simple and straight forward. These user friendly features took our users with some surprise, and hence advice you to put RSS to this blog post. (I should be updating this post quite often)
1. Filter out events with Mouse gestures:
Position: Drill down on any counts against the hosts configured, to grab them in a filtered view /export
Purpose: Filter out any events based on severity, or message strings, to create a quick report.
Let’s tour this feature now, and make your day easier with a sample scenario.
We know that, Eventlog Analyzer application is designed to report on Event logs, from hosts like Windows, Syslog devices (UNIX, Cisco’s, Solaris, Routers/Switches, etc) and application logs (SQL, IBM AS400, IIS and FTP server logs).
Our predefined reports are designed to provide you an overall picture of your enterprise’s activity (Compliance, Top N reports, etc).
For instance, you will see all the hosts collecting logs on ELA, and respective counts on severity, with log collection status on the Home tab itself.
Clicking on a host name should drill down to important events collected and counts of events. Second level drill down should enable you to view in detail, exact transactions against the hosts. You can also export this page to a PDF or a CSV on demand. Again, I am sure, you are aware on this.
But, do you know we have a user friendly feature on this page, called Mouse gesture?
Try doing a mouse gesture by left clicking your mouse on any attributes, which will filter only the selection you have made, and export it to a PDF or CSV on demand. You can do a second mouse gesture on this filtered search, to further drill down!! (Event ID is selected as 529, and message contains “a specific string” for unsuccessful user logons.). This feature is available for all the hosts, when you drill down for reports. Refer to some screen shots below.
Here are a couple of scenarios for you to consider this user friendly feature.
- Creating a custom report based on Event Id’s with message filters is a time consuming, but one time affair. In reality, you at least have more than 1 try/attempt, to create a report based on your requirement. Now, you can use this feature by using your simple mouse clicks on any attributes available and do quick sample exports, then use the same attributes on your report profile, once done, and schedule it. To be short, fill it, schedule it and get your reports based on your schedules.
- Consider a host with anomalous counts of failed logon and an IT manager should be interested on a report on such transactions (of course, we recommend creating alert profiles to get notifications on such instances). All you do is drill down to these events, and either export this as a report on demand, or further filter out any important hosts/event id’s / or even message contents, on a couple of clicks, and the job is done.
Sure, it should sound simple and straight forward. Try it out for yourself, and any feature request on this to be notified by email to eventloganalyzer-support@manageengine.com, with your contact information
Again, feel free to share your views and experience with us and let our experimenter get more ideas from you.
Regards
Shri
Eventlog Analyzer –team
Follow us on Twitter
