Event Log Database Consolidation

 Top  Previous  Next

This chapter will outline the steps required to consolidate all or selected event log records to one central database. You will find references to other chapters that go into greater detail on certain steps.

 

1. Create the EventSentry database

The database can be created automatically during the installation when using MSSQL or Access, no further action is required. If you are using MySQL or Oracle then you will need to run the Database Setup Wizard. You can also use the Database Setup Wizard to create multiple MSSQL databases.

 

2. Create an ODBC System DSN

An ODBC system DSN is required to point the the web reports to the correct database. This ODBC DSN will need to be created on the server where IIS is running, preferrably using the eventsentry_web user. For more information see Installing the Web Reports.

 

3. Setup the Web Server

A virtual directory with the name EventSentry is automatically added to IIS if the setup is run on the machine where IIS is installed. For more information see Installing the Web Reports.

 

After this step is complete you should be able to view the web reports by navigating to http://yourwebserver/EventSentry/, though you will probably not see any data yet.

 

4. Setup the EventSentry configuration with filters and target(s)

In order for EventSentry to actually write data to the database you will need to

 

Create one ODBC target that points to the previously created database, we recommend using a connection string. Test the target with the TEST button.
Add at least one filter pointing to the ODBC target. You can configure exactly which events you want to have written to the database and which ones you don't want to write to the database.
Configure the diskspace, process tracking, environment and/or heartbeat feature to point to the database

 

5. Optional: Make sure the necessary ODBC drivers are installed on all remote hosts

Since all agents are writing directly to the database you will need to make sure that each computer has the required ODBC database drivers installed. Please see this table for more information:

 

Operating System

Microsoft SQL Server

MySQL

Oracle

Microsoft Access

Windows NT

need to be installed

need to be installed

need to be installed

need to be installed

Windows 2000

already installed

need to be installed

need to be installed

already installed

Windows Server 2003

already installed

need to be installed

need to be installed

already installed

Windows XP

already installed

need to be installed

need to be installed

already installed

 

6. Push the configuration to all computers running the EventSentry agent

Once you have verified or think that the configuration works correctly you can push the configuration out to all agents using remote update.

 

7. Tweak the Web Reports

The web reports are configured by the WebReportsConfig.xml file, located in the installation directory of EventSentry. Please see Configuring Web Reports for more information.

 

8. Tweak the database

We highly recommend following the database tips in order to get the most out of your web reports experience. Following those guidelines will make sure that your database is automatically maintained and that your queries return quickly.