How are you collecting data from Windows Servers?

I am curious what people are doing for collecting logs from Windows Servers (2008, 2012, 2016). I have heard that if your environment has SMBv1 disabled the Microsoft Security Event Log protocol no longer functions.

Does anyone have experience they want to share with collecting Windows Server logs and if they have SMBv1 disabled?



Leave a Reply