Too much info on Windows Security logs


I’m currently collecting Security logs of a bunch of Active Directory. The problem is the log messages came with a quick documentation at the end of it on how read it. Is there a way to disable this documentation directly on Windows or does someone has an idea to deal with it on Graylog ?

This is an exemple of the problem with the log message of a 4624 event.

(The thing I’m talking about is inside the red rectangle)

1 Like

Hello && Welcome

What are you using to send log to Graylog?
How is this log shipper configured?

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.