GFI EventsManager

How can we improve?

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  1. Bulk Actions Application

    provide the ability to apply custom "actions profile" actions to mulitple rules instead of having to change one rule at a time.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow imports into user defined database

    Provide a dialog box to allow the user to specify which database to import events into. This would allow a user to import and review old data in a way that ensures the data set does not get mixed with live data.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    started  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Allow Events Manger to save EVT file in EVT format

    Provide a function for a user to select a monitored windows log and to "save" in EVT format, but have GFI do an event collect just before the log is saved/cleared. Our admins need to save EVT in binary format. This causes a concern about event collection timing and the possibility of missing uncollected events if the log is manually cleared.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  4. GFI EventsManager J-SOX report

    Pls. add J-SOX report templates in GFI EventsManager as requested by many customers.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    started  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Rule Folders configurable order of priority (rule precendence)

    Rule Folders in Evetns Manager should have configurable priorities rather than rely on Increaase/decrease priority. A configured priorty for rule folders combined with rule priority within the rule foders would enabel admin to know for sure the order of rule processing, e.g. folder 1 priorty 4 whould run before folder 3 prioryt 1. Right now it relies on the folder sorting which is not precise, just click the various options for this window and the folders jump around.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  6. Enable Password Complexity Requirements

    Currently in GFI EventsManager, all passwords created by Users are allowed, including those that are a single character.

    I propose optionally enforcing password complexity rules like those used by most other applications that require a login.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  7. Enable multiple user "Remember my Password"

    In GFI EventsManager, users can check a box to remember their password upon future launches of the Management Console. However, checking this box enables the credentials to be saved system-wide, meaning if another user logged on, they would be presented with the saved credentials as well.

    I propose making the "Remember my Password" check box setting no system-wide, but stored in each user's application settings directory.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  3 comments  ·  Flag idea as inappropriate…  ·  Admin →
  8. Sorting log in failures by user

    We want to generate a report that shows the number of log in failures next to a person's username. To minimize the size of the list and help sort the problem area.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. GFI EventsManager - Would like to have Client Agent

    I am using the new EventsManager 2012 and find that I really like it, however we are a PCI compliant company and have several DMZ zones. The auditors do not like having to have NETBIOS /filesharing from the GFI Events manager in order to collect Windows Events and Weblogs. Would be great if we could actually install an Agent on each of the DMZ servers which only used 1 or 2 ports for communication so that we would not have to open the NETBIOS ports. In my opinion, this would greatly enhance the security of the product. It could be…

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    started  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  10. Add more options to the Report Sort by fields

    Under the general tab there is a sort column. The option selected there does not cover all the fields available.
    It would add much more option for customizing the reports if all the columns in the report could be available there.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. Event ID Search

    The ablity to search the rules under "Event Processing Rules" for a specific Event ID's and the rule associated with this Event ID. The other option may be a seperate column in the "Event Processing Rules" area which list the Event ID's contain within the rule and the ability to sort that column.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add an Option to generate reports in landscape mode

    In the current version of the eventsmanager all reports are created in portrait mode. Depending on the scope of the report, it is useful to change the orientation to landscape. An appropriate option should be added.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Report lines numbering

    If there are too many records (lines) in a report it is almost impossible to orientate within it as well as it is impossible to refer to a particular record in the report. It would be very useful to add a lines numbering feature.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  14. Define fine-grain db-user permissions for database monitoring

    I propose you take a look at exactly what permissions are needed to monitor database audit logs and configure GFI Eventsmanager to support different configurations of database permissions.

    As it stands now, when GFI EventsManager is set up to monitor databases, it requires a database user with full access rights ("SYSDBA" for Oracle, "sysadmin" for MSSQL). For some scenarios, this is unacceptable and sends us security-minded admins running in the other direction. You only grant permissions to what the user needs and nothing he doesn't need or shouldn't have. A user created for monitoring should not be able to drop…

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Queued Jobs

    I noticed that there are duplicate machines in the Queued Jobs. Perhaps ESM might be more optimized to detect that there's already a pending/running job and thus not submit the duplicates? This is especially true when machines are unreachable for whatever reasons. Thus, less likely for ESM to end up crashing or slow performance.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  16. Automatic Rotation to different drives

    In order to save space I would suggest that rotation could be configured to used different disks while rotation.

    For example:

    Database1 on D: drive
    Database2 on F: drive

    I want to be able to switch between the two databases automatically on a monthly basis.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  17. EventsManager Reports Should Support Server 2008 and Windows 7

    EventsManager Reports should support the new event ID's in Windows Server 2008 and Windows 7. It should not be incumbent on each user to update the reports for these "current" operating systems.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  18. import configuration

    Since our languare is not English, some event browser filter which contains English value like category contains "logoff", the filter I have to manially change to category contains "??"...

    Everytime ESM upgrade, we have to do it one by one. I've try to use import/export to import old configuration I backed up from old build. But I am afraid the import job will impact to new build and maybe lost some new configuration.

    Please fild a way to let us just export chenged configuration and compare with new configuration, then decide which old configuration will import to new build.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. Ability to Alert via Email when GFI Services/processes fail

    We utilize GFI EventsManager 2012 to collect logging data for compliance and for that reason it must run nearly 24/7. In the past couple of months I have had issues where occasionally various aspects of SNMP or SYSLOG stop. Sadly no alert is raised unless I am in the GUI everyda, which I am not nor do I guess are other overburdened IT professionals.

    What would be great is if their was an option that I could enable to have GFI EventsManager email me when any of its processes failed(I understand not being able to email if esmproc.exe stopped) such…

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Feature to filter event sources on full privileges user

    I'd like to have feature for full privileges user able to filter event sources just like read-only user. because for my country computer crime act. it's need to separate between system admin and data admin. the system admin can configure the log server but cannot view or access collected log. and data admin cannot configure the log but can view or access collected logs.

    1 vote
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

GFI EventsManager

Feedback and Knowledge Base