Hi [[ session.user.profile.firstName ]]

Agentless Windows logging

With syslog-ng Premium Edition, you can collect Windows event logs without installing any third party application on your Windows-based computer.

The benefits are obvious:

- You don’t need to install any additional application (reducing administrative overhead and possible security risk).
You can manage the subscription from Windows Group Policy (permission, certificates, destination).

- The Windows Event Collector (WEC) acts as a log collector and forwarder tool for the Microsoft Windows platform. Unlike the syslog-ng Agent for Windows, WEC is a standalone tool that does not require installing on the Windows-based host itself. This can be an advantage when your organization's policies restrict or do not allow the installation of third-party tools.
Recorded Apr 26 2018 57 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Istvan Molnar, Craig Finnan
Presentation preview: Agentless Windows logging

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Using syslog-ng with Google Pub/Sub Recorded: Dec 15 2020 48 mins
    Craig Finnan, systems engineer/syslog-ng product specialist
    Asynchronous messaging services are becoming popular in the world of cloud business applications - and we felt it is high time syslog-ng started supporting it. As the first step, we implemented support for Google's Pub/Sub service. The great news is that syslog-ng can act both as a publisher and a subscriber for the service, meaning you can both receive and send data to-and-from Pub/Sub.

    Learn how to integrate Google Pub/Sub with syslog-ng Craig Finnan, our syslog-ng specialist systems engineer. This live webcast, Using syslog-ng with Google Pub/Sub, will show you how with a high-level overview, intro to the implementation process and a demo of a working system.
  • Improve SIEM performance and cut SIEM costs with log management solutions Recorded: Nov 17 2020 34 mins
    Hunor Voith, Product Manager syslog-ng
    Having the right log data is vital for identifying and investigating data breaches, verifying compliance with regulations such as FISMA, HIPAA and PCI-DSS, as well as monitoring the minute-to-minute operations of your systems and networks.
    And yet – too much log data can cause your SIEM to be less effective and cause SIEM license costs to spiral out of control.
    A state-of-the-art log management solution can reduce data loads, storage needs and alert fatigue. That means your SIEM can get a boost in performance while you lower costs.

    Join this webinar and Hunor Voith, syslog-ng product manager from One Identity, and learn how you can implement the right log management solution and maximize SIEM effectiveness while minimizing costs.
  • Custom HTTP REST API Authentication with syslog-ng Recorded: Jun 16 2020 57 mins
    Ferenc Sipos, Director of Sales Engineering - Log Management
    For some time now, syslog-ng has supported HTTP destinations as long as the API requires no authentication or works with HTTP header-based static secret. However, if authentication, particularly one using more sophisticated schemas, is involved, specialized destination drivers had to be created in the core syslog-ng codebase (e.g. OAuth 2 support for Microsoft Azure Sentinel or Google Stackdriver).

    Join this live webinar, led by syslog-ng’s director of sales engineering, Ferenc Sipos, to learn how your organization can implement custom HTTP(s) authentication methods in syslog-ng using Python. Benefit from Ferenc’s broad experience in helping our customers optimize their log data strategy.
  • Optimize Your SIEM Feed with syslog-ng Recorded: May 6 2020 31 mins
    James Bonamico, systems engineer/syslog-ng product specialist
    With the current health crisis situation, organizations of all types are scrambling to move to a remote workforce. Recently, we have helped a number of customers and prospects to secure access to applications and systems for staff and contractors.

    For these organizations, this has resulted in higher volume of remote systems data (logs). Of course, this information needs to be collected efficiently and optimized for analysis by their SIEM solutions. Because of the raw performance of UDP, many organizations use it to facilitate this transportation of data, but it can be risky, as UDP lacks error-correction and reliability failsafe capabilities.

    syslog-ng can help.

    Register for our live webcast to see how you can achieve efficient UDP log ingestion with syslog-ng without relying on expensive external load balancers.
  • Learn how to easily integrate Azure Sentinel into your log-data strategy Recorded: Apr 2 2020 44 mins
    Craig Finnan, systems engineer/syslog-ng product specialist
    To keep our partners and prospective customers up to date with the latest information about log-management technology, syslog-ng hosts an ongoing series of live webcasts. In April, we will cover how to optimize your feed to Azure Sentinel with syslog-ng.

    Front-ending SIEMs and integrating on-prem and cloud-based systems are some of the most popular use-cases for syslog-ng.

    Join us for this webinar to learn how you can leverage syslog-ng to ship your cloud and on-prem logs to Microsoft Azure Sentinel for analysis.
  • You can achieve 1m+ UDP messages per second ingestion challenge Recorded: Nov 5 2019 40 mins
    Ferenc Sipos, Director of Sales Engineering - Log management
    Even in 2019, many organizations rely on UDP to ship syslog messages from endpoints to Splunk where TCP transport is either not feasible or desirable. Scaling UDP ingestion with no message loss is far from a trivial task.

    Join us for our live webcast which will showcase how you can achieve 1m+ EPS UDP ingestion with a single syslog-ng instance and single UDP listening port using no external load balancer leveraging socket level load balancing.
  • How to Leverage NetFlow and vFlow to Better Monitor Network Traffic Recorded: Sep 19 2019 21 mins
    James Bonamico, systems engineer/syslog-ng product specialist
    Watch our on-demand webcast in which James Bonamico, senior sales engineer at One Identity, shows you how to leverage Cisco’s NetFlow and Verizon Digital’s vFlow technologies to better monitor network traffic.

    Learn how to collect, parse and analyze this data for better security and enhanced visibility into your network performance.

    Webcast topics include:
    •How to use NetFlow network traffic monitoring for availability, capacity planning and security detection
    •Understand the value of vFlow, an open source, high-performance enterprise network flow collector developed by Verizon Digital
    •Learn how syslog-ng PE can ingest decoded NetFlow traffic directly from vFlow.
    •See how you can efficiently parse, filter, and route NetFlow traffic along with other log traffic
  • Live Webinar: How to use the syslog-ng PE’s new Google Stackdriver destination Recorded: Jun 27 2019 51 mins
    Craig Finnan, systems engineer/syslog-ng product specialist
    Google Stackdriver is a flexible and convenient way to monitor and manage your cloud-based assets, regardless of where they are located or how they are configured. If your organization is completely in the cloud, has apps on Google Cloud or Amazon Web Services, or if you manage a hybrid environment, Stackdriver is a terrific solution.

    Join this live webinar, hosted by syslog-ng’s - Craig Finnan, systems engineer and product specialist, to learn how to set up and use the new syslog-ng PE Google Stackdriver destination.

    Topics discussed in the webinar include how to:

    •Send on-prem log messages collected and processed by syslog-ng PE to GCP
    •Browse and search syslog-ng log messages using the Stackdriver Log Viewer
    •Enhance log-search capabilities by leveraging name-value pairs automatically parsed by syslog-ng
    •Collect and monitor syslog-ng statistics using Stackdriver Monitoring
  • Bridge the Gap between Cloud and On-premises Recorded: Apr 11 2019 44 mins
    Ferenc Sipos, Director of Sales Engineering - Log management
    Please join us to explore the various ways syslog-ng can help bridge the gap between the cloud and on-premises resources with custom integrations built using syslog-ng’s Python API.

    Topics include:
    •Fetching log messages from Azure Event Hub and feeding them to an on-premises log management/SIEM solution.
    •Forwarding on-premises log data to Google Pub/Sub for cloud-based processing.

    Register now!
  • Got a Hungry Splunk? Feed it Smartly with syslog-ng Recorded: Mar 27 2019 32 mins
    James Bonamico, Senior Engineer (syslog-ng product specialist)
    We can help eliminate your struggle to reliably collect and send your log data to Splunk.

    Register for our free webinar to learn how you can easily manage and scale log ingestion across your whole enterprise environment.

    In this webinar we will demonstrate:
    •syslog-ng Premium Edition’s high-performance Splunk HTTP Event Collector (HEC) destination
    •How to batch and send messages to multiple Splunk HEC nodes
    •How to eliminate the need for forwarders and external load balancers
  • Optimize your SIEM with syslog-ng Recorded: Mar 26 2019 3 mins
    syslog-ng can collect and centralize log data whether it's user activity, performance metrics, network traffic or any other log data.
    Remove data silos and gain full-stack visibility of your IT environment - one syslog-ng server can collect more than half a million log message per second from thousands of log sources.
  • Send logs using the Advanced Log Transport Protocol (ALTP) Recorded: Jan 29 2019 53 mins
    Craig Finnan, syslog-ng presales engineer
    Attend this webinar to learn how your organization can reliably send and receive log messages via the TCP transport layer.

    Never lose log data by using the new Advanced Log Transfer Protocol (ALTP), which is a proprietary transport protocol that prevents message loss – even during connection breaks.

    See how syslog-ng Premium Edition leverages this new technology to communicate and manage log messages. Along with features such as flow-control and reliable disk-buffer, it is the best way to prevent log message loss.

    This webinar will highlight features, including:
    •Message send/receive acknowledgement
    •Automatic resends of missing/lost messages
    •TLS compression option
  • Splunk HEC and syslog-ng deep dive Recorded: Dec 12 2018 45 mins
    Balázs Scheidler Founder and Creator of syslog-ng
    Dwelling deeper into reliable log ingestion to Splunk with syslog-ng by utilizing the HTTP event collector.
  • Log ingestion to Splunk HEC Recorded: Nov 6 2018 42 mins
    Balázs Scheidler, creator of syslog-ng
    Organizations heavily invest in log analytics and event management. That is why many of them consider SPLUNK as a viable solution. Yet that is only half of the solution as analytics are only as good as the data feed into it. Centralized log management technologies enable organizations to collect and distribute log reliability while guaranteeing optimal performance for SPLUNK.

    From this 60-minutes webinar session you will learn the benefits of front-ending Splunk with syslog-ng central log management solution.
  • High performance log streaming to HDFS with syslog-ng Recorded: Sep 25 2018 37 mins
    István Molnár, Prooduct Marketing Manager and James Bonamico, presales- engineer.
    Hadoop is one of the most popular MapReduce solutions. Many organizations choose Hadoop as their big data store. syslog-ng Store Box allows seamless integration with Hadoop Distributed File System (HDFS), providing high performance log collection, distribution and pre processing.

    In our upcoming webinar, we will demonstrate how to directly stream any text-based log into HDFS while keeping a high performance rate using syslog-ng Store Box.
  • Logging in docker with syslog-ng Recorded: Aug 30 2018 64 mins
    István Molnár, Product Marketing Manager and Craig Finnan, presales- engineer.
    Containerization, and Docker in particular, changed the way we distribute and run applications with conflicting dependencies.

    Thanks to syslog-ng, setting up a centralized log management infrastructure in Docker is as simple as issuing the “docker run” command.

    In our upcoming webinar, we will demonstrate how to set up and manage a syslog-ng Docker network.
  • Supercharge your syslog-ng parsing Recorded: Jul 26 2018 34 mins
    Balázs Scheidler, the creator of syslog-ng
    Parsing a specific log message for one specific use case is usually simple and the tools associated with it are widely understood.

    Parsing a broad set of messages for a broad set of use cases is much more complicated. Adding in performance requirements of tens or hundreds of thousands of messages per second only makes things even more difficult to accomplish.

    In our upcoming webinar the creator of syslog-ng, Balázs Scheidler, will showcase how to address these challenges with the latest syslog-ng Premium Edition 7.0.9.

    The webinar will focus on:

    - Taking raw system logs and turning them into more useful and structured logs.

    - Retaining performance and turning the end result into dashboards for reliable log analysis and incident response.
  • How to get the most out of your syslog-ng installation Recorded: Jun 28 2018 61 mins
    Istvan Molnar, Mario Perozo
    Our webinar focuses on how to fine tune syslog-ng for peak performance.

    The session will touch on topics such as:

    - Do's and don'ts when setting up and running syslog-ng
    - How to tweak syslog-ng to manage higher log volumes
    - Tips and tricks on optimizing your logging infrastructure
    - Troubleshooting best practices
  • How can you regain the control of your privileged accounts? Recorded: Jun 13 2018 57 mins
    Csaba Krasznay, PhD.
    Balabit, a One Identity business,will present some shocking research statistics and instructive breach stories involving the misuse of privileged credentials.

    Balabit’s recent global research showed that 4 in 5 companies were hit by a breach in 2017. In this kind of landscape, with both cyber-attacks and privileged users proliferating simultaneously – and with the GDPR re-framing our relationship with data security – now’s the time for IT teams to get better control of their networks.

    In our 45-minute webinar session, you’ll hear about our key research findings and recommendations to reduce your risks related to privileged accounts. The webinar will be held by Csaba Krasznay, PhD., CISSP,
    Security Evangelist and Program Director of Cybersecurity Academy at the National University of Public Service in Hungary.
  • How can you ensure that your logging infrastructure is GDPR compliant? Recorded: May 17 2018 60 mins
    Istvan Molnar, John Murdoch
    Watch this on-demand webinar to learn how syslog-ng can help your organization fine tune its log management infrastructure to get GDPR compliant.
Streamline your log collection and enhance SIEM efficiency
syslog-ng delivers log data critical to understanding what is happening in your IT environment. Whether it's user activity, performance metrics, Windows Event logs, network traffic or any other type of log data, syslog-ng can collect, process and centralize it in real time, and forward it to your analytics tool. You can remove data silos and gain full-stack visibility of your IT environment.

With syslog-ng, you can build a one-stop log data shop, find the logs you need in seconds and greatly enhance your SIEM efficiency.

For more information, visit syslog-ng.com

About One Identity
One Identity helps organizations optimize identity and access management. For more information, visit http://www.oneidentity.com.
Short Copyright & Trademark:
© 2018 One Identity LLC. ALL RIGHTS RESERVED.

One Identity’s privacy policy: https://www.oneidentity.com/legal/privacy.aspx
To unsubscribe: https://www.oneidentity.com/unsubscribe

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Agentless Windows logging
  • Live at: Apr 26 2018 2:00 pm
  • Presented by: Istvan Molnar, Craig Finnan
  • From:
Your email has been sent.
or close