<div>
If so here's an example of what you need to do in terms of configuration.<br />
<br />
Forwarder:<br />
winrm qc<br />
net localgroup &quot;Event Log Readers&quot; DCNugget1$ /add<br />
<br />
Collector:<br />
wecutil qc<br />
winrm qc<br />
<br />
Subscription name: Criticals and Warnings from Nugget2<br />
Destination log: Forwarded Events<br />
Collector initiated<br />
Select Computers -&gt; Nugget2<br />
Select Events -&gt; Critical, Error, Warning<br />
Events Logs -&gt; Applications<br />
User Account: Machine Account
</div>


If so here's an example of what you need to do in terms of configuration.

Forwarder:
winrm qc
net localgroup "Event Log Readers" DCNugget1$ /add

Collector:
wecutil qc
winrm qc

Subscription name: Criticals and Warnings from Nugget2
Destination log: Forwarded Events
Collector initiated
Select Computers -> Nugget2
Select Events -> Critical, Error, Warning
Events Logs -> Applications
User Account: Machine Account

<div>
thanks motnahp00<br />
what about for older versions of windows? they dont have this capability correct? (windows 2003)
</div>


thanks motnahp00
what about for older versions of windows? they dont have this capability correct? (windows 2003)

<div>
Windows Server 2003 does not have this capability.
</div>


Windows Server 2003 does not have this capability.

<div>
do you know of any agents that i can install to ship this to a syslog-ng server?
</div>


do you know of any agents that i can install to ship this to a syslog-ng server?

<div>
You can see if there is any integration with Puppet.
</div>


You can see if there is any integration with Puppet.

<div>
<div class="content wysiwyg-content">
looking to get all my windows server logs (event viewer logs) shipped off to a syslog-ng server<br />
how can i do this? do i need some sort of windows agent installed on the windows boxes to ship them off to the syslog-ng server?<br />
<br />
thanks!
</div>
</div>


looking to get all my windows server logs (event viewer logs) shipped off to a syslog-ng server
how can i do this? do i need some sort of windows agent installed on the windows boxes to ship them off to the syslog-ng server?

thanks!

how can i ship my windows logs (event viewer) off to a syslog-ng server

Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.

Windows Server 2008

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).

Windows Server 2003

The Microsoft Legacy Operating System topic includes legacy versions of Microsoft operating systems prior to Windows 2000: All versions of MS-DOS and other versions developed for specific manufacturers and Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions, and Windows Mobile.