Has anyone has issues with this integration just stopping? I had it working for a month and then it just quit on me. I've opened up a case, but the engineer can't figure it out either. I can create test alert emails that work just fine. Also Launch In-Context works just fine as well so the integration partially works. I've sold the integration between Log Insight and vROps to users around my company. Quite a few are waiting ...more »
General Log Insight Q&A
upgrade from 4.0 to 4.3 failed on pre-validation
IHAC, who wanted to know which host is generating more events and ingesting to the vRLI server .
Also he wanted to create a generate which can be scheduled to run every day and email the results.
I was hoping that I could use machine learning(event trends), to look at firewall logs. But as it sees the firewall logs as one event type, nothing useful can be gain from this.
Is there a way to influence or manipulate how the event type is found ?
Like I stated I want to use machine learning to see if "new" network patterns happens over time
Does log insight have compress in the server?
IHAC, who installed and configured a windows agent in one of the Windows 2012 machines and pointed to redirect all the logs to VIP ( integrated load balancer) .
However the hostname of the windows box is showing up under Hosts instead of Agents tab (in administration tab)
Customer do want to know why it's shown under hosts and how to remove the hosts which displayed under hosts tab manually
On behalf of the Log Insight team, I'm happy to announce that vRealize Log Insight 4.0 is now GA and live on www.vmware.com. GA Date: November 15th, 2016 What's New General vSphere 6.5 compatibility System Notification enhancements Support for custom SSL certificates in the vCenter Server edition Support for Spanish locale (ES) UI Items New overall User Interface based ...more »
I just upgraded from GA 2.5 to GA 3.3.2, and the upgrade worked smooth. Removed the 1.x/2.x license and added the 3.x license, but up on the title bar I have this
“Warning: Evaluation License (more)”
When you click on that, it will give you the option to go to the Eval page, or the cluster page.
This install was never an eval install, always a licensed version. Any ideas how to get rid of this?
We have multiple robocopy jobs in our environment logging to text files. I am curious if anyone has a log parser that would make the robocopy log data more readable and useful in Log Insight?
I am using the Ingest API for forwarding per the documentation but when I check the messages at the destination all the "source" field values are the IP of the forwarder and not the originator.
Has anyone else seen this?
With v3.6 of LI, is it possible to programmatically download the LI agent over unsecured HTTP? Previously, an API call had to be made over HTTPS, which poses a problem for scripting a download for the Windows agent, for example. I'm looking for the simplest way to retrieve the LI agent from the LI cluster (not cache it on a fileserver) so an application blueprint can more easily be made for vRA and added as a component. ...more »
I have 2 cas/hub and 2 mailboxes running exchange 2010. I have loginsight 3.6 server and loginsight 3.3 agents running on above servers. I have configured the server side agents and parsers. I have configured 2 scripts wrappers as per documentation. I have not configured SMTP logging. The results is that many tab on the loginsight conservative are not populated. Could anyone have step by step configuration note tin ...more »