Exporting the contents of the Event log module
The Eventlog export type is used to export the contents of the Event log module.
The generated output for this export can be either a CSV or JSON file.
In addition to the keys described in the Parameter file section, there are also other keys (listed below), which can be used for this specific export type.
Section [Filter]
Key Values
FilterFrom
Start of the time period according to which entries are to be filtered (as a timestamp in UTC format).
To output only the differences to the last export, you can specify the value “LastExecution” here. Under this key, the timestamp of the last executed export is entered in the [Result] section.
FilterTo End of the period by which entries are to be filtered (as a timestamp in UTC format).
LastXDays Period (in days) after which entries are to be exported
MaxLines
Maximum number of lines to be exported
100,000 is entered as the default value. This means if the complete list consists of more than 100,000 entries, and nothing else has been entered, only these 100,000 entries will be exported as a result.
ComponentId Component ID by which the entries are to be filtered.
Example call:
Parameter file Eventlog.ini
[Common]
ReportType=Eventlog
ExportFile=D:TestEventlog.csv
[Filter]
FilterFrom =`<2021-04-17T08:12Z>`
FilterTo =`<2021-04-21T18:00Z
[User]
Account=
Password={Password}
List of attributes that can be found in the resulting file
| Colum | Descriptio |
|---|---|
| TimeStam | The date when the changes were made. |
| Type_I | ID of the event typ |
| Typ | Event type. Possible values:Successful Error Information Warnings |
| Sourc | Data source, server that reported the even |
| Category_I | ID of the event categor |
| Categor | Category of the even |
| Even | The even |
| Computer nam | Name of the computer on which the event took place. |
| Messag | The text in the message |