I tried to use another file that I created locally on the server saving all security event in a file with event viewer, but I have the same problem.
I found a similar problem in this thread
I have a use case scenario where I have to manually upload and parse Windows logs to Elasticsearch by using exported .evtx files. Splunk handles this fine with the "oneshot" command and I was wondering if anyone in this forum found a similar solution with Winlogbeat or tools that is utilizing Winlogbeat?
I know that the latest version of Kibana supports upload of log files, however there is a limit to the size of files that can be uploaded, which in my case is not sufficient.
The best workroun…
Is it released this functionality?
Thank you in advance