Windows Events Inputs

George Alpizar
George Alpizar

Overview

This input type allows you to specify Windows Events channels for Edge Delta to monitor.

Review Parameters

Review the following parameters that you can configure in the Edge Delta App:

Visual Editor YAML Description
Labels labels

Enter a descriptive label for this input. 

When you create a workflow, you will use this label to enter your input into the workflow. 

errorcheck is the default label. 

This parameter is required. 

Review the following example: 

labels: "errorcheck"
Channel channel

Enter (or select) the Windows channel that the agent should collect from:

  • Application
  • Security 
  • System
  • Setup

This parameter is required. 

Review the following example: 

channel: "Application"
Filters filters

Select an existing filter to add to this input. 

To learn how to create a filter, see Filters.

This parameter is optional. 

Review the following example: 

filters:
  - info

Review Sample Configuration

Review the following sample configuration:

  winevents:
    - channel: "Application"
      labels: "errorcheck"
    - channel: "Security"
      labels: "errorcheck"
    - channel: "System"
      labels: "errorcheck"
    - channel: "Setup"
      labels: "errorcheck"

 

Share this document