Logstash wmi input isssue

Pachai_muthu · December 20, 2017, 2:13pm

Hi team,

I have installed logstash 6.0.0 version in centos 6.9 server and also installed logstash-wmi-input plugin 3.0.3 version.

My Config file in /etc/logstash/conf.d/winsystem.conf

input {

wmi {
query => "select * from Win32_Process"
host => "10.1.1.117"
user => "fileshare\testuser"
password => "password-1"
}
}

Note: i did't get any windows logs file in logstash logfile location.But i am receiving following default log only

[2017-12-20T19:16:00,279][INFO ][logstash.pipeline ] Starting pipeline {"id"=>"main", "pipeline.workers"=>1, "pipeline.batch.size"=>125, "pipeline.batch.delay"=>5, "pipeline.max_inflight"=>125}
[2017-12-20T19:16:00,301][INFO ][logstash.inputs.wmi ] Registering wmi input {:query=>"select * from Win32_Process"}
[2017-12-20T19:16:00,521][INFO ][logstash.agent ] Successfully started Logstash API endpoint {:port=>9600}

Please help me. If i need to do any configuration changes

system · January 17, 2018, 2:13pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Logstash WMI Input Plugin donot work Logstash	1	407	October 1, 2020
Logstash and WMI Plug-in Help Logstash	1	387	March 27, 2018
User credentials cannot be used for local connections Logstash	3	485	October 11, 2020
Logstash WMI plugin logstash-input-wmi Logstash	1	535	December 25, 2019
Must logstash-input-wmi be run on a Windows host, or can it be run on linux? Logstash	2	745	December 16, 2016

Logstash wmi input isssue

Related topics