Sys Maintenance: Event Source Monitoring View

Document created by RSA Information Design and Development Employee on Sep 14, 2017Last modified by RSA Information Design and Development Employee on Apr 24, 2020
Version 32Show Document
  • View in full screen mode
           

Note:

For NetWitness Platform 11.4.1, this view has been deprecated. To manage Event Sources, use the Admin > Event Sources view. For details, see "About Event Source Management" in the RSA NetWitness Platform Event Source Management Guide.

 

NetWitness Platform provides a way to monitor the statistics for various event sources in the User Interface. The information displayed is historical and comes from the Log Decoder. You can customize the view depending on the parameter you select to filter the data.

To access the Event Source Monitoring view:

  1. Go to ADMIN > Health & Wellness.

    The Health & Wellness view is displayed with the Alarms tab open.

  2. Click Event Source Monitoring.

What do you want to do?

                  
RoleI want to ...Show me how
AdministratorView the Events Collected from an Event SourceHistorical Graph View for Events Collected from an Event Source

Related Topics

Quick Look

The Event Source Monitoring view is displayed.

                 
1Displays Event Source Monitoring tab.
2Toolbar used to filter and customize the Event Source Monitoring tab.
3Displays Event Source Stats panel.

Filters

This table lists the various parameters you can use to filter and customize the event source monitoring view. 

                                               
ParameterDescription

Event Source

Type the name of an event source you want to monitor.

Select Regex to enable Regex filter. It performs a regular expression search against text and lists out the specified category. If Regex is not selected it supports globbing pattern matching.

Event Source Type

Select an event source type for the event source selected.

Log Collector

Select the Log Collector to display the data collected by the specified Log Collector.

Log Decoder

Select a Log Decoder to display the data collected by the specified Log Decoder.

Time Frame

Select the time frame for which you want the stats.

  • Select Received if you need the query results to contain only event sources that logs have been received from within the selected time.
  • Select Not Received if you need the query results to contain only event sources that logs have not been received from within the selected time

Order By

Select the order in which the list needs to be filtered.

Select Ascending to filter it in an ascending order.

Apply

Click to apply the filters chosen and display the list accordingly.

Clear

Click to clear the chosen filters.

Export as CSV

Click to export the information as a csv file.

Event Source Stats View Display

                                           
ParameterDescription
Event Source

Displays the name of the event source.

Event Source Type

Displays the event source type.

Log Collector

Displays the Log Collector from where the events were initially captured.

Log Decoder

Displays the Log Decoder where the events are being processed.

Count

Displays the number of events received by Log Decoder since last reset of count value.

Idle Time

Displays the time lapsed after the last stat collection.

Last Collected Time

Displays the time at which the Log Decoder last processed an event for the event source.

Historical Graph

Click  Historical Graph icon to view the historical graph of the stats collected for the event source.

 

You are here
Table of Contents > References > Health and Wellness > Event Source Monitoring View

Attachments

    Outcomes