Hey. My goal - Monitoring of specific events on a file server. I want to be notified when there is "audit failure" and "success audit" for a specific folder on the server. My sensors are configured wmieventlogsensor-Security Audit Failure / Security Audit Success. But I receive messages all over the Security Audit Failure / Security Audit Success, and I need for a specific folder \ path. Where in the sensor settings can I specify what that value to the sensor wmieventlogsensor tracked desired me events?
Eventlog Sensor
Modified on 2025-06-10 22:10:36 +0200
Disclaimer:
The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.
The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.
Hello,
In order to filter for a specific folder \ path you can use in the sensor settings Filter by Category or Event Source.
Aug, 2016 - Permalink