Centralized Event Log Manager

CELM is a utility that centralizes the Security Event Log.  All servers that participate on CELM have the security events that you choose stored in an SQL Server database.  This database can be queried by either the web query included with CELM or by using your favorite SQL Server query tool.

Using the CELM Manager, you select which Event IDs you want to saved into the database.

From CELM Manager, you can create additional database and switch which database your servers save to.  This will allow you to store database for long term to meet Sox compliance.  Switch databases weekly, monthly, quarterly, or yearly... what ever your needs are.

CELM Manger also lets you install the CELM Service on remote computers:

CELM Manager also allows you to check on the status of servers that are participating in CELM.  If you do not have a need to keep database for long periods of time, you can also trim the database to improve query performance and save on disk space.

The CELM Database contains SQL views that make it easy to query.  You can either use the included web based query tool or your favorite SQL query tool.