Home
  •  

Monitoring - Security baseline rules

Microsoft.IntelligencePacks.SecurityBaseline.CollectRuleErrors (Rule)

Collects error events from security baseline rules for monitoring purposes

Element properties:

TargetMicrosoft.Windows.Computer
CategoryCustom
EnabledFalse
Alert GenerateFalse
RemotableFalse

Member Modules:

ID Module Type TypeId RunAs 
DS DataSource Microsoft.SystemCenter.CollectRuleErrors Default
WA WriteAction Microsoft.SystemCenter.DiagnosticsInformationDataWriteAction Default

Source Code:

<Rule ID="Microsoft.IntelligencePacks.SecurityBaseline.CollectRuleErrors" Target="Windows!Microsoft.Windows.Computer" Enabled="false" ConfirmDelivery="false" Remotable="false" Priority="Normal" DiscardLevel="100">

  <Category>Custom</Category>

  <DataSources>

    <DataSource ID="DS" TypeID="Monitoring!Microsoft.SystemCenter.CollectRuleErrors">

      <RuleName>Microsoft.IntelligencePacks.SecurityBaseline.ExecutionRule</RuleName>

    </DataSource>

  </DataSources>

  <WriteActions>

    <WriteAction ID="WA" TypeID="Types!Microsoft.SystemCenter.DiagnosticsInformationDataWriteAction"/>

  </WriteActions>

</Rule>