Recommendations for programmatic even log monitoring/reporting

[BobMCT]

Now that we have enabled just about every type of logging and access our event logs are growing by hundreds of thousands of records per day. I am sure that is true with others who enable this level of logging.

What mechanisms/programs/utilities/techniques are others using to scan and examine these logs on a daily basis to identify anomalies?

All recommendations greatly appreciated!

 

[ITPangaeaArchitect]

Thats a very broad question. It can technically be scripted, however, you would need to know exactly what events you consider an "anomolie" so the script would know what to look for.
This is probably a huge reason the MOM product came out, and NetIQ, etc.

-Brandon Wilson
MCSE00/03, MCSA:Messaging00, MCSA03, A+
Manager - Global AD Operations
ACS, Inc.