Hello all,
I used the document found HERE to configure Real-Time Change Detection for Cisco devices, and was successful. Now, I want to configure RTCD to only send an email notification only when certain commands are entered, such as hostname, logging, ntp, etc., instead of the default *Configured from console* that sends an email on every single change.
However, when I attempt to do this, the changes don't appear to take effect. I do not have Log Analyzer, and when opening the Syslog Viewer program I receive the message 'Running in read-only mode. Some operations might not be available.' As a result, I'm unable to change most fields in the Syslog Rules, including the Syslog Message Pattern. I've also tried adding or updating rules under the Log Processing Configuration menu in the Syslog web interfaces, but whenever I create a Custom Rule under Syslog Processing Policies, it appears to be ignored and I never receive a notification.
I'm running SolarWinds Orion version 2019.4 HF4, with NCM, NPM, SAM, NTA and UDT installed.
Is there a way to update this without Log Analyzer, or is Log Analyzer required to perform anything other than the default RTCD options?
