Hey @gcusello, Do i have to do it this way? I just extracted the fields and they are already there, i.e. Object_Name, Object_Type. But when I try Object_Name = C:\Windows\System32\dhcp\j50tmp.log .....it will not search for that item.
I can search other items such as:
Object_Type = File
Object_Server = Security
But not the Object_Name.
I am trying to create an alert where It will alert me with those categories in mind.
... View more