Forum Discussion

Employee

2 years ago

LM Portal Integration Events - EventSource to alert on Alerting Integration failures

What: It’s an EventSource that calls recent Alert Integration events from the LM API (endpoint: /setting/integrations/auditlogs) , and alerts on any non-2xx responses. Why: Mostly because these fa...

Anonymous

12 months ago

That’s for Audit logs or Collector logs, I presume?

Audit logs to LM Logs

There is no API endpoint to extract logs from LM Logs.

I’m not talking about extracting them from LM Logs. I’m talking about getting it directly from the audit logs and sending to the SIEM. There’s no API for a lot of things.

For the Audit Logs question, there is also a Community LogSource, “LM Audit Logs”, Locator: 43W643, that may be of interest.

Props to Thomas, but there’s a high probability of logs getting missed using that method. Gotta use the script cache to recall the timestamp of the oldest log fetched during the previous poll. Mine gets down to the second (or ms?) and makes sure there are no missed entries.

Forum Discussion

LM Portal Integration Events - EventSource to alert on Alerting Integration failures

Related Content

LM Servicenow Integration

Servicenow Integration

Servicenow Integration

Logic Monitor service now integration issue

Plugin update for LogicMonitor to ServiceNow Integration

Recent Discussions

Python script to run API call - AddWebsite - Need help with collectors

Non-Admin Collector install

LM APM - Traces - HTTP Post from Powershell Scripts

dell hosts and idrac combined

Can anyone help modify this Datasource to be able to use any port?