EventLogCentral, powered by EventTracker helps you to monitor all logs generated in your network from anywhere just with the help of a browser. It is an indispensable tool for System administrators, Security Analysts, and Compliance Auditors.

BACK TO TOP

Hardware Requirement:

Software Requirement:

• Operating System: Windows 2003 Server (with the latest service packs), Windows 2000 Server (with the latest service packs).
• Web Browsers: Microsoft® Internet Explorer 6.0 and above (or) Firefox 2.0 (Mozilla) (or) Netscape 8.0 and above.
• Web Server: IIS 5.0 and above.
• Data Access Components: MDAC 2.7 and above (Microsoft Download Center).
• .NET Framework 2.0 (http://www.microsoft.com/downloads)
• EventTracker™ 6.0 and above

BACK TO TOP

EventLogCentral provides two User Authentication options namely “Local Account” and “Active Directory”. You can select an appropriate option while installing ELC, through the EventLogCentral Configuration dialog.

If you want “Local Account” authentication, the user accounts and group accounts should preexist in the target computer. So, create user accounts and group accounts in the target computer before you attempt to install ELC.

If you want “Active Directory” authentication, the user accounts and group accounts should preexist in the Active Directory. So, create user accounts and group accounts in the Active Directory before you attempt to install ELC.

BACK TO TOP

Yes, ELC and EventTracker can be installed on the same computer or on two different computers.

If you plan to install ELC & EventTracker on the same computer, refer the install guide found in

http://www.prismmicrosys.com/Support/docs.php

If you plan to install ELC & EventTracker on two different computers, refer the appropriate install guide found in

BACK TO TOP

ELC can be best viewed in Microsoft® Internet Explorer 6.0 or Mozilla or Netscape.

BACK TO TOP

Regular expressions are a powerful and flexible method for processing text information. EventLogCentral takes the unique approach of allowing you to use regular expressions for defining rules for filtering noise, triggering alerts or selecting records for reports.

BACK TO TOP

Members of this User group (EventTracker Admin) have the administrative privileges on the application and can assign roles to other users.

BACK TO TOP

To log on to ELC, the user must be a member of “EventTracker” user group. To administer roles in ELC, the user should be a member of “EventTracker Admin” user group.

EventLogCentral user authentication operates locally, that is confined to a particular computer or within Active Directory context. EventTracker & EventTracker Admin user groups must be created prior to installing EventLogCentral.

Creating Local User and Group Accounts

Note: To perform this procedure, you must be a member of the Administrators group on the local computer, or you must have been delegated the appropriate authority. If the computer is joined to a domain, members of the Domain Admin group might be able to perform this procedure.

Summary

1. Create user groups “EventTracker” and “EventTracker Admin” in the computer where EventLogCentral is to be installed.
2. Create a local user. Example: “ETAdmin” (This could be any name).
3. Add “ETAdmin” user to “EventTracker” group. Members of this group can only log on to ELC and do not have privileges to administer roles. To administer roles, add “ETAdmin” user to “EventTracker Admin” group.
4. Add “ETAdmin” user to “Administrators” group on the computer where ELC is to be installed. You can provide this user credentials while installing ELC.

For more information, refer Creating Local User and Group Accounts section in the ELC Install Guide

Creating Active Directory User and Group Accounts

Note: To perform this procedure, you must be a member of the Account Operators group, Domain Admins group, or the Enterprise Admins group in Active Directory, or you must have been delegated the appropriate authority.

Summary

1. Create user groups “EventTracker” and “EventTracker Admin” in the domain where EventLogCentral is to be installed.
2. Create a domain user. Example: “ETAdmin” (This could be any name).
3. Add “ETAdmin” user to “EventTracker” group. Members of this group can only log on to ELC and do not have privileges to administer roles. To administer roles, add “ETAdmin” user to “EventTracker Admin” group.
4. Add “ETAdmin” user to “Administrators” group on the computer where ELC is to be installed. You can provide this user credentials while installing ELC.

For more information, refer Creating Active Directory User and Group Accounts section in the ELC Install Guide.

BACK TO TOP

Referhttp://www.prismmicrosys.com/Support/latest guides/CWG10SWIISSSL.pdf

BACK TO TOP

Ensure that ASP.NET is enabled for the Web server. This can be checked as follows.

In Windows 2003

Fig 1

Verify webserver extensions for ASP.Net:

a) Click Start, point to Settings-> Control Panel, double-click the Administrative Tools and then double-click the Internet Information Services Manager. The Internet Information Services window is displayed

b) Expand Web service Extensions.

c) If ASP.NET is enabled, 'ASP.NET v2.0.50727 (32-bit)' appears on right side. If the status is 'Prohibited' then select 'ASP.NET v2.0.50727 (32-bit)' and click on 'Allow' button. Without these changes, the application will not work as desired.

Fig 2

BACK TO TOP

Yes, provided it depends on the User Authentication option you select in the Configure EventLogCentral dialog.

Local Account:

The user must be a member of  “Administrators” user group on the computer where ELC is being installed. If you plan to install ELC with local user account, restart the computer, log in with local user credentials and then proceed with the installation. To log on to ELC, the user must be a member of “EventTracker” user group or the user should have been assigned a role. To administer roles in ELC, the user should be a member of “EventTracker Admin” user group.

Active Directory:

You can also user domain user account to install ELC provided the user must be a member of  “Administrators” user group on the computer where ELC is being installed. To log on to ELC, the user must be a member of “EventTracker” user group or the user should have been assigned a role. To administer roles, the user should be a member of “EventTracker Admin” user group.

BACK TO TOP

Yes. It is necessary to update the new password through the ELC Configuration dialog i.e. Start -> Programs -> Prism Microsystems -> EventLogCentral -> Configure EventLogCentral.

BACK TO TOP

Cause: The domain/user may not exists in Active Directory or password for may domain/user have changed.

Resolution : Go to Start/Programs/PrismMicrosystem/EventLogCentral/Configure EventLogCentral

Cause: Browser security

Cause: The default security settings of Trusted Zone (provided corresponding website was added to this zone) never allows to prompt for downloading file or File download.

Resolution: Open a browser instance, Go to Tools -->Internet Option ->Security and select Trusted sites and Click Custom Level. Go to Downloads, Enable the following

• Automatic prompting for file download (this option is available only in Windows 2003)
• File Download (This option is available in windows 2000,windows 2003)
• Click Ok to Save and close the popup
• Click Apply and Ok to Save and Close the internet option Dialogue
• Close the browser instance

The above steps will solve the problem of generating reports in PDF and DOCs

If ELC is installed on 64-bit machine, then you will get the screen as shown in figure below:

1. Open IIS Manager.
2. Click the Web Service Extensions node in the left pane.
3. Click the ASP.NET v2.0.50727 (32-bit) Web Service Extension in the right pane.
   
   
   
   
4. The default Status is Prohibited. Click the Allow button.
   
   
   
   
5. Restart the IIS server.
6. Open the browser, and type the URL as http://localhost/ELC/cwg_login.aspx (https: if the Web site is SSL enabled). The ELC Login page will be displayed.

Reason:

If IIS was installed after installing EventTracker or EventLogCentral and EventTracker have been installed on 2 different systems then this issue occurs. During EventTracker installation Crystal Reports runtime component is also installed. If IIS is installed after installing EventTracker application then binding between Crystal Reports runtime and IIS is not correct.

Solution:

Download "Crystal Reports for .NET Framework 2.0 x86 Redistributable Package (32 bit)" from the below mentioned site and install it on the system where EventLogCentral has been installed.
http://resources.businessobjects.com/support/additional_downloads/runtime.asp#07

Reason:

Number of members in ‘EventTracker’ user group should have exceeded the number of user license you had purchased.

Solution:

Remove member(s) from EventTracker user group and restart ELCReceiver service for the changes to take effect. Number of member(s) in EventTracker user group should be less than or equal to the user license you have purchased.

You can also upgrade ELC to match with the number of members(s) in EventTracker user group. Contact sales@prismmicrosys.com to upgrade your license.

RSS (or Really Simple Syndication) feeds are free content feeds from Web sites, including washingtonpost.com, that contain article headlines, summaries and links back to full-text articles on the web.

EventLogCentral uses RSS for notification in generation of Reports(Scheduled, Queued), alert notification etc.

BACK TO TOP

To start using RSS, you need a special news reader or aggregator that displays RSS content feeds from Web sites you select. IE7 is the most popularly used RSS Reader. Also, there are many different news readers available, many of which are free of charge. Most are available as desktop software that you can download and install on your computer. Several Web-based news readers are available as well.

List of news readers (Yahoo).

BACK TO TOP

RSS is an easy way for you to be alerted when content that interests you appears on your favorite Web sites. Instead of visiting a particular Web site to browse for new articles and features, RSS automatically tells you when something new is posted online.

Click on the section title link to obtain the RSS URL, which you will see in the "Address" field of of your browser. Simply copy this URL and follow the instructions for your particular news reader to subscribe.

An RSS Reader is used to read RSS Feeds.There are a lot of different RSS readers available. For viewing EventLogCentral Feeds, the rss reader should support RSS version 2.0.

Enterprise Feeds are the feeds, which are configured from EventTracker Manager Console. User(s) of EventLogCentral can use this feed for notification.Management of these feeds can be done only at EventTracker Management Console.

My Feeds are the feeds, which are user specific and can be managed by individual users through EventLogCentral.

Users can subscribe to Enterprise/My Feeds. For example, while scheduling/queuing any Enterprise reports, My Reports or Analysis, users can subscribe to Enterprise/My Feeds. Whenever a report/analysis is generated, users will spontaneously get RSS notification and is visible through the standard RSS reader.

Each ELC RSS feeds(Enterprise/My feeds) is associated with a URL. Users can subscribe to the corresponding feed by copying the feed channel links to RSS reader.

It is advised to configure your rss reader to auto check for updates every 10 minutes so that the alerts are received faster and old alerts are not lost.