Submit a ticketCall us

Bridging the ITSM Divide
Integrated help desk and remote support software for faster resolution

Join us on Wednesday, November 29, 2017 at 11 a.m. CT, as we discuss the benefits of effectively integrating your help desk software with remote support solutions to help increase the efficiency of IT administration, improve communication, and decrease mean time to resolution (MTTR) for IT issues of all sizes. This directly impacts end-user satisfaction and your business’ bottom line. Register Now.

Home > Success Center > Network Performance Monitor (NPM) > WMI polling causes the Windows Security Event log to fill up

WMI polling causes the Windows Security Event log to fill up

Table of contents
Created by Tiarnan Stacke, last modified by MindTouch on Jun 23, 2016

Views: 316 Votes: 0 Revisions: 6

Overview

When polling Windows Servers via WMI, the Windows Security Event Log generates a lot of logs.

Environment

  • All NPM versions
  • All SAM versions

Detail

The cause of this is that Auditing is enabled on the target node. For information on how to configure this, please refer to Microsoft Documentation: Configuring Audit Policies.

When left on default settings, each Node Poll will generate a Logon/Logout event.

With SAM Polling, each component monitor within a template functions independently from the others. With Windows auditing enabled, each component monitor will generate one successful login and one successful logout event in the security event log each time it is polled.

 

Last modified

Tags

Classifications

Public