Yes please navigate to https://www.eventsentry.com/support/documentation to download the help file and/or quickstart guide. Both documents are available in the following formats: Microsoft Help.chm Adobe PDF.pdf HTML.htm Multimedia Help.exe

KB-ID 4
Category: General
Applies to: All Versions

The EVENTSENTRYSVC.LOG file located in the SYSTEMROOT directory usually c:\winnt or c:\windows is the debug log file of the EventSentry agent. To reduce the size of this file set the Debug Level option in Service Control to None or Low and restart the EventSentry service. The contents of this file are always cleared when the ...

KB-ID 7
Category: General
Applies to: up to v2.43

Generally speaking EventSentry does not have a significant performance impact on a computer. EventSentry was developed in C with the goal of being invisible in mind and we are happy to say that we have accomplished this goal. As such one should never even notice that the agent is running and monitoring the event logs and the computer. The...

KB-ID 47
Category: General

On my Windows Server 2003 with service pack 1 SP1 I am unable to start the EventSentry Service Agent and the EventSentry management console also won39t load.All EventSentryrelated applications seem to fault crash either immediately or a short while after they were started. All EventSentry executable files eventsentrysvc.exe eventsen...

KB-ID 48
Category: General
Applies to: 2.40 and higher

This can happen when a monitored event log is corrupt. You can check whether a particular log is corrupt by opening up the Windows Event Viewer and trying to access the event log in question. If there is an error then event viewer should indicate that. Clearing the event log in question usually resolves the problem.

KB-ID 62
Category: General

Windows NT4 is still supported but you are getting this error message because the required dynamic link library pdh.dll is not installed on your Windows NT4 installation. To fix this problem copy the file pdh.dll from the NT4 subdirectory of your EventSentry installation directory e.g. C:\Program Files\EventSentry to the SYSTEMROOT\syst...

KB-ID 91
Category: General
Applies to: 2.70

EventSentry supports all x64 editions of Windows including Windows Server 2003/2008 Windows XP Windows Vista and Windows 7. Support for these versions is accomplished through the 32bit compatability mode of these systems. A native 64bit agent is planned for the 3.0 release of EventSentry. You can install EventSentry on x64bit systems ei...

KB-ID 92
Category: General

Yes you can monitor most databases with EventSentry depending on how well the database interacts with the following components of the Operating System: Event Log Performance Monitor Event Log Microsoft SQL Server logs all critical errors warnings informational events and audit failures to the Windows event log. Messages logged by...

KB-ID 120
Category: General

No EventSentry obtains all time and time zone information from the Operating System and EventSentry will report the dates and times as they are logged/generated by the Operating System. As such if your Operating System is aware of the new DST changes then so will EventSentry.

KB-ID 126
Category: General

Starting with the latest build of EventSentry 2.72 you can monitor Windows Vista machines with the EventSentry agent. Microsoft introduced a new interface to the event log with Windows Vista but also included a legacy interface to make the revised event log compatible with preVista applications. EventSentry uses this interface to monitor c...

KB-ID 128
Category: General
Applies to: 2.72

You can download the package file from our website from a computer that does have an Internet connection and then copy the package file to the computer where the EventSentry Management Console is installed. The URL for the package file is: Latest EventSentry Packages There currently is no builtin notification mechanism available to let yo...

KB-ID 146
Category: General
Applies to: All Versions

Due to an issue with the rasctrs.dll which enables performance counters for the Remote Access service the EventSentry service v2.92 only will not automatically start at boot on Windows 2000 SP4 machines even when the service is configured for Automatic startup. Prior to starting the EventSentry service39s process Windows loads all regist...

KB-ID 197
Category: General
Applies to: 2.92

Yes there is an EventSentry mobile application but it is published by a 3rd party. iPhone/IPad/Apple Watch EventMonitor Androidbased devices Sorry there is no Android application for EventSentry.

KB-ID 228
Category: General
Applies to: 2.92 and later

Starting with version 2.93.1.37 the maximum size of the debug log file located in SYSTEMROOT\system32\eventsentry\logs can be adjusted with the debuglevelmaxsize registry value. This DWORD value specifies the maximum size of each debug log file in megabytes consequently the total disk space used will be twice the size of the registry val...

KB-ID 234
Category: General
Applies to: 2.93.1

Yes. Starting with version 2.93.1 of EventSentry the following components of EventSentry are supported on Windows Server 2012 and Windows 8: EventSentry Agent EventSentry Management Console EventSentry Heartbeat Agent EventSentry Network Services BuiltIn PostgreSQL Database Earlier versions of EventSentry may also work succ...

KB-ID 239
Category: General
Applies to: All Versions

A new licensing engine was introduced in EventSentry v3.1 and license keys issued for EventSentry v3.0 or earlier those license keys are usually 56 characters in length will no longer work in EventSentry v3.1 and later. You can migrate your legacy license keys to the new v3.1 license keys under two circumstances: 1. You have an active m...

KB-ID 280
Category: General
Applies to: 3.1 and later

Please review Requirements in the official EventSentry documentation. EventSentry: Operating System: Windows Server OS Windows 2012 R2 or higher CPU: 4 or more cores Memory RAM: 4 GB minimum / 16 GB total system recommended

KB-ID 299
Category: General
Applies to: All Versions

Yes as long as the necessary WMI interface Dell OpenManage HP Insight WBEM is installed in the operating system the EventSentry agent can detect and monitor the same RAID status fan status power supply status and other hardware health and status indicators that are visible in the vendor39s hardware status tools. EventSentry can also dete...

KB-ID 345
Category: General
Applies to: 2.93 and newer

There are several compliance standards that EventSentry can help fulfill such as: PCIDSS 3.x FISMA HIPAA Sarbanes Oxley SOX GLBA ISO 27001:2013 CJIS Security Policy SB1386 California NIST 800171 For more information please see: https://www.eventsentry.com/features/compliance

KB-ID 346
Category: General
Applies to: 2.93 and newer

Using EventSentry in conjunction with WEF has not been tested and is not a supported setup. Instead EventSentry agents should be deployed and used to transfer event log and other data through the collector. Utilizing the EventSentry collector services offers a number of benefits including: Caching data while a host is offline Encr...

KB-ID 355
Category: General

Yes depending on how aggressive your Antivirus/Antimalware software is you may be unable to deploy the agent or push an updated configuration without whitelisting. If you experience the error Unable to update files or Unable to update files despite having Administrator permission on the remote host you may need to whitelist the followi...

KB-ID 369
Category: General
Applies to: All

For the eventsentryweb account: In the web reports menu click Settings and choose Profiles and type the new eventsentryweb password in the settings and click Test Connection. If the test is successful you can save the changes by scrolling to the bottom and clicking Submit. Repeat this for any additional web reports profiles that use the s...

KB-ID 374
Category: General
Applies to: All

Service Account EventSentry agent LocalSystem account EventSentry Collector LocalSystem account EventSentry Heartbeat Monitor Please see KB41 EventSentry Network Services LocalSystem account EventSentry Web Reports LocalSystem account EventSentry Databa...

KB-ID 376
Category: General
Applies to: All

Yes in fact we have a tutorial on our blog that shows how to execute a command based on the IP value in certain Logon Failure events. Please note that you can use a different event39s data to get the IP address value for your script or command. You can use the Event Message Browser to determine the insertion string number of the IP addre...

KB-ID 377
Category: General
Applies to: 2.93 and newer

This is caused by a missing Windows update. If Windows has not been recently updated or if you39ve been installing nothing but SecurityOnly updates and SecurityOnly rollups you might be missing a required dll file. Either update your system so that you have at least one of the monthly update rollups which were released since January 2018...

KB-ID 381
Category: General
Applies to: 3.4.1.58 or newer