FYI looks like Barracuda sends in split messages: ones for receiving, and
one for sending.
Is there a way to combine them into one in Graylog2?
On Thursday, July 30, 2015 at 2:25:21 PM UTC-7, Spencer wrote:
>
> I have a Barracuda mail server to use a our GrayLog2 server for
> syslogging.
>
> H
We have the following format and it works for us
Search Base DN: dc=xxx,dc=yyy
User Search Pattern: (&(objectClass=user)(userPrincipalName={0}))
Display Name attribute: displayName
(so did you remember to put brackets around the filter?)
Jason
--
You received this message because you are subsc
Thank you.
I know that we use SAMAccountName since:
# ldapsearch -LLL -H ldap://adserver: -b 'dc=com,dc=local' -D
'TEST\' -w 'xx' '(sAMAccountName=fim.testnew)'
works, however when I set the filter, to SAMAccountName={0}
it results in:
The filter sAMAccountName=TEST\5fim.testne
Thanks Jochen, I thought I'd navigated through pretty much all the API
Browser yesterday but I completely missed those!
I'll check the Mongo stats next time it happens and see what I can see in
there compared to a connected node and that should hopefully do the trick.
Cheers, Pete
On Thursday,
I have a Barracuda mail server to use a our GrayLog2 server for syslogging.
Has anyone wrote or know of helpful extractors to get the subject name,
to/from, status code, etc?
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To unsubscribe fro
I'm very new to all of this and have been running graylog for only the past
week - all three components on one box. It's been working well until last
night when elasticsearch crashed/exited. The /var/log/elasticsearch/xx.log
file contains no error, but syslog said
Jul 30 15:35:06 gl2.local gray
Jochen,
I tried what you suggested and it still did not work. In the end I got it
working by changing to UDP Syslog and it worked properly.
Cheers,
Leon
On Thursday, July 30, 2015 at 8:08:49 PM UTC+1, Jochen Schalanda wrote:
>
> Hi Leon,
>
> some network appliances don't send actually valid sy
You've got a bad filter. There is no "uid" field in AD, you either need to
use sAMAccountName or userPrincipalName
Use "sAMAccountName" is you are a single domain, or "userPrincipalName" if
you have multiple domains in a single forest (and use the GC ldap port
[3268] instead of standard ldap)
Hi Leon,
some network appliances don't send actually valid syslog messages, although
their manufacturers claim they do. This might be one of those cases.
Please check, if the messages are indexed if you're using a Raw UDP/TCP
input in Graylog. You'd have to extract the interesting fields with s
Hi,
I'm trying to connect GrayLog2 to our local ActiveDirectory server and
having no luck.
I'm getting a ":-| User Check and {check mark} Login Check" when
configuring and testing the user of a user.
*Base DN is*: dc=,dc=local
*Search Pattern is*: (&(objectClass=person)(uid={0}))
I have
All,
I have developed a Hadoop output plugin for graylog to forward the stream
output to Hadoop HDFS.
The plugin uses WebHDFS protocol to talk to Hadoop cluster.
It support custom message formats and pseudo authentication.
Give it a try and let me know your comments.
Plugin URL : https://git
Just one more thing once we are on this subject.
How do I add another server to the cluster ?
Say I want to put another server for collecting data in another location
how do I go about adding in a way it is available via the same website?
Thank you.
On Monday, 27 July 2015 16:58:21 UTC+1, Mar
Hi Pete,
currently there is no resource in the Graylog REST API which would check
the availability of MongoDB or Elasticsearch explicitly. But you could
check this "indirectly" via the cluster stats resource at
http://localhost:12900/system/cluster/stats (or more
specifically http://localhost:
That works perfect. Thanks for that Marius. Much appreciated.
All the best !
On Monday, 27 July 2015 16:58:21 UTC+1, Marius Sturm wrote:
>
> You can query the Eleasticsearch API directly to get an overview of all
> connected nodes.
> For example, login to 192.168.1.100 and execute this: curl -XG
14 matches
Mail list logo
