Install Guide
Logger Setup
system event
- Table: EVTX_SYSTEM
- Data Source: Select the Logpresso Windows Sentry to collect event logs from.
- Default is the same as the location of Storage.
- Event Channel:
System - Host IP: Management IP address of the server generating the system events.
RDP event
- Table: EVTX_RDP_SVC
- Data Source: Select the Logpresso Windows Sentry for collecting RDP service events.
- Default is the same as the location of Storage.
- Event Channel:
Microsoft-Windows-TerminalServices-LocalSessionManager/Operational - Host IP: Management IP address of the server generating the RDP service events.