- Related Products
- ADManager Plus
- ADAudit Plus
- ADSelfService Plus
- Exchange Reporter Plus
- AD360
- Log360
EventLog Analyzer provides predefined alert profiles and the ability to define customized criteria for specific requirements.
To create an alert profile, click on +Add in the top right corner of the navigation bar. You can also add an alert profile by clicking on the "Add Profile" button in the Manage Profile page.
Here's what you can do to create an an alert profile:
Select Predefined Alert under Define Criteria:
You can then specify the notification type for the alert profile.
Compliance alerts contain sets of pre-defined compliance related alerting criteria to notify you of any violation of IT regulations. EventLog Analyzer provides granular audit reports to help you comply with compliance regulations such as PCI DSS, SOX, HIPAA, GLBA, PDPA, NIST, CCPA, GDPR, ISO 27001:2013, and more. The compliance alerts detects anomalies such as policy changes, privilege escalations, sensitive file access and modification events, and unauthorized logons to help you mitigate internal and external threats.
You can then specify the notification type for the alert profile created.
With EventLog Analyzer's Advanced Custom Alert option, you can generate alerts for custom extracted fields for Oracle, Microsoft SQL, print Servers, IIS, and other imported application logs.
To generate alert for specific custom extracted field of imported log, choose the log type and select the imported log for which you need to trigger alerts. Specify the custom field and its value, upon the occurrence of which the alert has to be triggered. EventLog Analyzer will automatically populate all the custom extracted fields for the selected log type and you choose the field of your choice from the list and then specify the value for the selected custom field.
You can then specify the notification type for the alert profile created.
EventLog Analyzer has prebuilt alert profiles that are enabled by default. To make it easier for users, newly added devices will also get added automatically to the corresponding alert profile(s) based on the device types selected in the alert profile. For example, firewalls will be automatically added to alert profiles based on network devices.
You can edit, enable, disable, and delete the default alert profiles.