2

Has anyone built a connector to send scom alerts to elasticsearch or a syslog system?

usgandrew commented
    • We forward alert data to Splunk which is similar. I don't know elasticsearch, but i the splunk case we forward the events trough the splunk angent based on a PowerShell script. For each property we want to use in splunk we create Fields that splunk can read.
    • it very similar, only different it use opensource agents or you just forward the messages as syslog. Do you have a copy of that powershell script? we might be able to tweak it for our needs.