Windows OS event format generated by the Tivoli Log File Agent
Windows OS events are formatted by the Tivoli Log File Agent into a csv format.
The value of the log source's logpath must match that specified for the logpath in the .fmt file deployed on the LFA on the Windows server.
The Windows OS Events Insight pack has been built using the IBM® Operations Analytics - Log Analysis DSV toolkit. Events are formatted by the Tivoli Log File Agent into a csv format with the following columns.
| Number | Column Name | Description |
|---|---|---|
| 1 | EventCategory | Describes the sussystem of event, for example, EventLog:Application or EventLog:Security |
| 2 | Timetsamp | Time of event |
| 3 | Level | Information, Warning, Error etc |
| 4 | User | If a user name is associated with the event |
| 5 | EventSource | Source of event |
| 6 | Keywords | Events may have keywords associated upon generation. |
| 7 | EventID | Event ID |
| 8 | Description | Text description of event |