Would you please guide me to the next step of being able to get log from windows workstations?
I am at where I am able to access the web interface of graylog.
In my environment, there are linux workstations, windows workstations, windows servers (AD), CentOS servers for nagios, and pfsense as firewall and routers.
I have read nxlog, but I might lack of fundamental knowledge for nxlog, that things do not make much sense for me.
I followed an instruction from this page https://www.supinfo.com/articles/single/6331-how-to-send-windows-server-2012-r2-logs-to-graylog-server
However, after I click on “Show received messages”, I got this error
Unable to execute search
Please let me know if you would like more information, I am not sure what information you all would need.
Thank you very much.