I have a GrayLog server running on Ubuntu 20.04 Server. I want to monitor Windows logs through that. My question is how to configure graylog to recieve windows logs.
I have installed Winlogbeat on windows machine and below is the configuration. I do not see any messages on GrayLog. I configured Beats Input on Graylog. Is there something missing or wrong in the winlogbeat configuration?
- name: System
- name: Security
- name: ForwardedEvents
- add_cloud_metadata: ~