Hi all,
We currently have monitoring processes that logon to our servers continuously to monitor the overall health of the server. This turns into thousands of unnecessary events flowing into LEM. Is there a way to filter these alerts at the Agent level to where they do not forward to the Manager? Here is additional criteria:
- We have to ensure that these events hit the Security Log locally on the server (can't filter them there)
- We are open to receiving the events on the Manager side and then trashing them (no display in the console, alerting, or storage) based on the Source Machine and Source Account used to Logon.
Any help is appreciated.