I've been looking at a previous thread (http://thwack.solarwinds.com/message/169428#169428) about pulling Cisco ASA logs from a Kiwi Syslog Server, and I'm trying to do the same with Windows logs that we syslog to Kiwi. Before the obvious reply comes, yes, I know about the LEM agent for Windows, but no, we won't use it (with the exception of the Kiwi server) because we are strongly against having JRE on our servers, especially AD.
So...I've looked at the "Tools" on the node in LEM, but there isn't a log format for pulling Windows data from a syslog (we use SNARE agents on our hosts to harvest their Windows event logs).
Thoughts?
Chris