3.1.6 Event log monitoring examples
This subsection explains how to monitor event logs.
- Organization of this subsection
(1) Overview
The OS and applications output errors, warnings, and other types of events to Event Viewer. By monitoring the Event Viewer event logs, you can detect a problem with the OS or an abnormal process operation, enabling prompt recovery of the system.
The following table lists and describes the principal records and fields related to the monitoring of the event logs.
Record |
Field |
Description (example) |
---|---|---|
PD_ELOG |
Log Name |
The event log type. Event logs include the following types of logs: Application, Security, and System |
Event Type Name |
The event type identification name, such as Error or Warning. |
|
Source Name |
The name of the application that output the event. This information identifies the application that output the event. |
|
Event ID |
The event ID. This information uniquely identifies each logged event for an application. |
|
Description |
The description (details) of the event. |
(2) Monitoring methods
(a) Monitoring all error and warning events output to the event logs
All errors and warnings output to the event log can be monitored using the Event Log (all) alarm provided by the monitoring templates.
You can use an alarm to monitor the error and warning events output to the event logs.
For details, see 3.2.6(1) Monitoring template.
(b) Monitoring a WSFC cluster
The operation of a WSFC cluster can be monitored using the Event Log (System) alarm provided by the monitoring templates.
You can use an alarm to monitor the events output by WSFC.
For details, see 3.2.6(1) Monitoring template.