CA SystemEDGE User Guide › Windows Event Monitoring › Windows Event Monitoring Overview › Windows Event Search Criteria

Windows Event Search Criteria

Each Windows Event Monitor table entry instructs the agent to search for matches based on the criteria described in the following table:

Event Log

Specifies the name of the event log. This value can be any of the following:

• Application
• System
• Security
• DirService (for Directory Service)
• DnsServer (for DNS Service)
• FileRepService (for File Replication Service)

Event Type

Specifies the type of event. Types 1 through 5 are defined by Windows as the following:

• error(1)
• warning(2)
• information(3)
• success(4)
• failure(5)

Type all(6) indicates that the agent should match all event types.

Event Source

Specifies the name of the program or module that generated the event. The agent uses regular expressions to match this field.

Event Description

Describes the event. The agent uses regular expressions to match this field.

The SystemEDGE agent generates an SNMP trap message when it finds a match based on all four criteria. This matching is similar to a Boolean AND operation.