NetWrix Event Log Manager Freeware Edition is a simple event log management tool that collects, consolidates, archives event logs and sends real-time alerts to administrators signalizing about specified events.

Submitted by Daniel Pershing

The Freeware Edition of NetWrix Event Log Manager is aimed to perform the following tasks:

  • Consolidate all event log entries from an entire network into a central location.
  • Compress and archive collected data for the subsequent convenient analysis, prevention of data loss and for audit purposes.
  • Detect critical events and send corresponding email alerts to an administrator

A typical NetWrix Event Log Manager Freeware Edition data collection and reporting workflow is as follows:

  1. The administrator specifies the computers to be monitored.
  2. The administrator sets parameters for automated data collection, and defines types of events that must trigger alerts and must be written to the Audit Archive (local file storage).
  3. NetWrix Event Log Manager collects all new event log entries and archives them in the Audit Archive. These audit data can be viewed using the NetWrix Event Viewer tool.
  4. If an event that triggers an alert is detected, an email notification is sent to the event summary recipients.
  5. An event summary is emailed to the specified recipients every 24 hours.

The workflow is illustrated in the image below:

Event Log Manager - Data collection and reporting workflow schematics

Data collection and reporting workflow schematics

NetWrix Event Log Manager collects events from computers using the specified filters and stores them in the Audit Archive.

Configuration ^

It is fairly easy to configure the product as one can set all the required setting using a single dialogue window (see Figure 2 below).

NetWrix Event Log Manager configuration dialog

NetWrix Event Log Manager configuration dialog

Using this dialog window one can configure monitored computers, real-time alerts, event summary recipients and other parameters.

When the product is configured, NetWrix Event Log Manager starts collecting events from computers according to the specified filters and stores them in the Audit Archive.

Events summary will be delivered daily at the time, specified in the Daily Events Summary delivery time setting.

After the product detects the required events, it will immediately send notifications (or real-time alerts) to the event summary recipients. The following figure illustrates an alert for the NetWrix Event Log Manager Agents’ event:

Event Log Manager - Example real-time alert

Example real-time alert

The Freeware Edition of NetWrix Event Log Manager supports up to 10 servers/DCs and 100 workstations. NetWrix also offers an Enterprise Edition that supports Syslog event collection, custom reports, unlimited number of servers, features long-term archiving storage, distributed data collection for highest performance, and integration in the NetWrix Enterprise Management Console.

NetWrix Event Log Manager ^

  1. Ron 9 years ago

    I considering this for single PC trouble shooting.

    The Windows Event Viewer is a real PITA if you don't know where to look. Does this tool make it easier to locate events for specific applications. For example I am looking for a better way for (remote) users with limited IT knowledge to find events associated with MS Office Install abends and MS Office App abends. In other words, what sort of queries does this tool support.

  2. Dan 9 years ago

    Hi Ron! thanks for your questions.
    NetWrix Event Log Manager provides a number of filtering capabilities, such as event ID, source (usually contains the name of the application, e.g. source: Outlook), category, etc. You can use any of the built-in filters or configure your own in order to collect and archive only needed events. You can even configure filters based on the insertion string values. If you are looking for an easy way to analyze data, have a look at the enterprise version of the software, that supports SQL SRS reports. These reports are web-based and therefore can be used by remote users as well. Hope that helps

  3. David 9 years ago

    Can you tell me what kind of information is in the daily summary email?

Leave a reply to Dan Click here to cancel the reply

Please enclose code in pre tags

Your email address will not be published. Required fields are marked *


© 4sysops 2006 - 2022


Please ask IT administration questions in the forums. Any other messages are welcome.


Log in with your credentials


Forgot your details?

Create Account