Good day!

I am currently testing xymon 4.3.0 beta2 and I received this event log from windows client.

This is the description of the even log. I never received description of the event log on the 4.2.0 version. (Please see the event log at the bottom)

Is this normal in the latest beta release?

Also, I am testing the centralized configuration of bbwin but I can't make the ignore function on the clien-local.cfg.

Here's my entry in the client-local.cfg:

[wsus11]

eventlog:System:10240

ignore Information

ignore Print

ignore Removable Storage Service

eventlog:Application:10240

ignore Information

ignore Windows Server Update Services

ignore BigBrotherHobbitClient

eventlog:Security:10240

ignore success

The clientlocal.cfg file that was being sent to the windows client is empty. But in my other windows client, the clientlocal.cfg fie is normal and I can see in the detailed logs that the entry will be ignored but it is still sent to the xymon server.

2010/07/16 17:05:36 [DEBUG]: [msgs]: will ignore : information

2010/07/16 17:05:36 [DEBUG]: [msgs]: will ignore : Print

2010/07/16 17:05:36 [DEBUG]: [msgs]: will ignore : Removable Storage Service

2010/07/16 17:05:36 [DEBUG]: [msgs]: will ignore : The Big Brother Hobbit Client service

Best regards,

Ryan

System logs at Wed Jul 21 08:49:59 2010

Critical entries in eventlog_application <http://10.193.57.106/xymon-cgi/bb-hostsvc.sh?CLIENT=wsus11&SECTION=msgs :eventlog_application> Last Error Code: 0

Last Error Code (WSA): 0

Full log eventlog_application <http://10.193.57.106/xymon-cgi/bb-hostsvc.sh?CLIENT=wsus11&SECTION=msgs :eventlog_application> information - 2010/07/21 08:49:15 - DWMRCS (111) - The description for Event ID ( 111 ) in Source ( DWMRCS ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. You may be able to use the /AUXSOURCE= flag to retrieve this description; see Help and Support for details. The following information is part of the event: The following user has connected via remote control.

Date: 07/21/2010 08:49:15 Computer Name: User ID: Logon As ID: Domain: . Desktop User ID: Desktop Name: Winlogon System Settings Using: INI-File Desktop State: Unknown Permission Required: No Access Approved By: N/A - See Disconnect Notification Access Declined By: N/A - See Disconnect Notification Access Request Timeout: N/A - See Disconnect Notification Access Request Disconnected: N/A - See Disconnect Notification OS Product ID: 76487-640-6912145-23304 OS Registered Owner: OS Registered Organization: Host Name from Peer: rrr IP Address(es) from Peer: Peer Host Name: Peer IP Address: Protocol Version - DWRCC.EXE: 5.100000-1.100000 Protocol Version - DWRCS.EXE: 5.100000-1.100000 Product Version - DWRCS.EXE: 6.5.0.0 Product Version - DWRCC.EXE: 6.5.0.0 Proxy Host Used: No Proxy Host: Proxy Destination Host: Proxy Destination Port: 0 Proxy Callback Port: N/A Authentication Type: Encrypted Windows Logon Last Error Code: 0 Last Error Code (WSA): 0 Host Port Number: 6129 Host IP Address: Host Name: wsus11 Absolute timeout setting: 0 minutes Connect/Logon timeout setting: 90000 milliseconds Access Check: Administrators Registered: Yes WTS Session: No Used RSA Public-Key Key Exchange (1024 bit keys). Encryption IDs: 26115 (24576,1536,1536) [192]. Hashing IDs: 26115 (24576,1536,1536). Used Shared Secret: No Registration: B3E7B137A1-C472C063