topic continuously monitor any local event Log windows 10 in Monitoring Splunk https://community.splunk.com/t5/Monitoring-Splunk/continuously-monitor-any-local-event-Log-windows-10/m-p/297958#M5534 <P>I am a data analyst interested in Security that have been reccently introduced to Splunk that I am learning on my own now. I was wondering how I can monitor any event on the <STRONG>local event Log</STRONG> ? here is what I do : <BR /> <BR />I go to the <STRONG>local event log</STRONG> after clicking the Monitoring option, then select <STRONG>System</STRONG>. In the <STRONG>input settings</STRONG> I change the <STRONG>app context</STRONG> from <STRONG>Search &amp; Reports</STRONG> to <STRONG>Monitor console</STRONG>. The events looks structured when I am done , but nothing is appearing on the visualisation tab;</P> <P>How can I have a visualisation of my monitoring. I do not mind monitoring anything else; I just need to see the graph. I guess </P> Sun, 19 Nov 2017 15:02:35 GMT YANN84 2017-11-19T15:02:35Z continuously monitor any local event Log windows 10 https://community.splunk.com/t5/Monitoring-Splunk/continuously-monitor-any-local-event-Log-windows-10/m-p/297958#M5534 <P>I am a data analyst interested in Security that have been reccently introduced to Splunk that I am learning on my own now. I was wondering how I can monitor any event on the <STRONG>local event Log</STRONG> ? here is what I do : <BR /> <BR />I go to the <STRONG>local event log</STRONG> after clicking the Monitoring option, then select <STRONG>System</STRONG>. In the <STRONG>input settings</STRONG> I change the <STRONG>app context</STRONG> from <STRONG>Search &amp; Reports</STRONG> to <STRONG>Monitor console</STRONG>. The events looks structured when I am done , but nothing is appearing on the visualisation tab;</P> <P>How can I have a visualisation of my monitoring. I do not mind monitoring anything else; I just need to see the graph. I guess </P> Sun, 19 Nov 2017 15:02:35 GMT https://community.splunk.com/t5/Monitoring-Splunk/continuously-monitor-any-local-event-Log-windows-10/m-p/297958#M5534 YANN84 2017-11-19T15:02:35Z Re: continuously monitor any local event Log windows 10 https://community.splunk.com/t5/Monitoring-Splunk/continuously-monitor-any-local-event-Log-windows-10/m-p/297959#M5535 <P>What kind of graph is necessary?<BR /> Please check how to use STATS, CHART, TIMECHART etc.</P> <P>ex.<BR /> sourcetype="WinEventLog:System"|timechart count by EventCode</P> Mon, 20 Nov 2017 04:53:50 GMT https://community.splunk.com/t5/Monitoring-Splunk/continuously-monitor-any-local-event-Log-windows-10/m-p/297959#M5535 HiroshiSatoh 2017-11-20T04:53:50Z