Scan the logs with keywords using GetLogs Action

Posted by Van Glass on Aug 26, 2018 1:16:44 PM

This custom trigger action performs a log scan using keyword(s) passed as argument(s), the logs found will be written to a separate file.

Downloads

Source code and build instructions

 

How to scan a log on keywords using GetLogs action 

 Let me now show you how to implement that.

 

1. Create a Trigger to find logs using Keywords

Login into admin console of JSCAPE MFT Server > Triggers and Click Add to create a Trigger

Give the trigger a Name and then select the Current Time event type from the drop-down list. 

 

get_logs_action_img1

 

Click Next to Step 2 where a condition can be set to execute the trigger.

Below screen shows a condition that the trigger should execute at 22 Hours 30 minute . Set the condition as Hour =22 AND Minute 30 ( Directory Scan will be performed every day at 22 hours 30 minutes )

Once the condition is set Click Next to proceed

 

clam_av_virus_update_img2

 

The step 3 asks to add an action, Add the action "Get Logs" from drop down list. If the action not found read the build instructions (Source code and build instructions) .

Click OK to proceed

 

get_logs_action_img3

The Parameters for the action "Get Logs" are;

  • File 
  • Exceptions

 

As the name indicates, File is the path where the logs which are scanned will be written to a different file and Exceptions indicate the keywords separated by comma.

For example as below;

 

ConnectionException.OutOfMemeoryError

 

Click OK to save the settings

 

get_logs_action_img4  

 That's it. Now you know how to create a trigger to scan the logs based on keyword(s)

 

Topics: JSCAPE MFT Server, Triggers, Actions