posted

1 Comment

As you know, Log Insight is a capable of collecting and analyzing any unstructured data in your data center. To make analyzing easier, Log Insight offers free content packs, which give you deep insight into a specific subset of logs. Recently, VMware released three Microsoft content packs:

Given Log Insight’s addition of a Windows agent in 2.0, these content packs have been in high demand. After being released, we have heard reports of Microsoft issues being reduced by as much as 30% and new issues being uncovered before causing production problems – all because of Log Insight and the Microsoft content packs.

With a broader audience using the content packs, we have received feedback on ways to make the content packs even better. We have aggregated this feedback and are happy to announce that all three content pack have been improved! Here are the details for each content pack:

  • Microsoft – Windows
    • Performance improvements have been made to the extracted fields
    • An object auditing dashboards has been added – see the Tech Specs on how to enable logging
  • Microsoft – Active Directory
    • Performance improvements have been made to the extracted fields
    • Alerts groupings have been optimized to improve information provided in alert email
  • Microsoft – Exchange
    • exchange_admin_audit_log script has been improved for better error handling and reporting
    • exchange_perfmon_counters script has been improved for better error handling and collection
    • Note: The Exchange content pack remains the same, the only improvements are to the provided scripts for data collection

If you are running these content packs today, head over to Solution Exchange to download the latest versions. If you are thinking about trying these free content packs, now is a great time!