Manualshelf

Product manual

ManualsBrandsGFI ManualsSoftwareEventsManager f/Servers, Add, 25-49S, 2Y, ENG
131132133134135136137138139140
GFI EventsManager 7 Activity Monitoring | 136
Section Description
The Critical and High Importance Events section provides statistical/graphical information about critical
events collected from all event sources. This graph shows the event processing rules that collected and
processed the events for a particular period.
From the drop down lists, select the type of information to display. Select from:
Grouping: Determines how events are grouped; such as Events, Computers, Computer groups,
Events/Computers or Events/Computer groups
Event type: Select the type of data to display (Windows
®
, Text Logs, Syslog, SNMP, Active Monitoring
Logs, SQL and Oracle audit)
Alert type: Specify the alert severity; such as All alerts, Critical or High
Period: Specify the time period when the events occurred (Last hour, Last 24 hours, Last 7 days or a spe-
cific date).
NOTE
This section also displays the vulnerability results monitored by GFI LanGuard.
NOTE
For detailed information about the different types of important events shown in this view, download the
Microsoft
®
Security Monitoring and Attack Detection Planning Guide from
http://go.gfi.com/?pageid=esm_smad_plan.
The Top Service Status Events displays the top 10 services that caused the selected event. A service can
generate events when:
Terminated with an error
Failed to load
Failed to start
Timed out
Stopped
Started.
The graph shows the frequency of these events sorted by service type and/or by computer generating the
event. Select a machine or service from the drop down lists or key in the required criteria to customize the
graph results.
Note
To collect services information, event sources must have Audit system events policy enabled. For more
information, refer to Enabling event source permissions manually (page 326).