Jason Conger JasonConger
View props.conf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [mscs:nsg:flow] | |
| description = Azure NSG Flow Logs | |
| LINE_BREAKER = (,|\[){"time" | |
| category = Application | |
| KV_MODE = json | |
| SEDCMD-remove_footer = s/\]}$//g | |
| SEDCMD-remove_header = s/{"records":\[//g | |
| SHOULD_LINEMERGE = false | |
| TIME_PREFIX = time\":\" | |
| TRUNCATE = 0 |
JasonConger
/ ConfigLogJSON.json
Created
October 15, 2015 20:20
Exmple JSON output from Citrix Configuration Log
View ConfigLogJSON.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "EntryId": "3_0_3", | |
| "Date": "\/Date(1443804400000)\/", | |
| "Account": "LAB\\administrator", | |
| "TaskType": 2, | |
| "ItemType": 0, | |
| "ItemName": "Calc", | |
| "Description": "Published application Calc was modified.", | |
| "Details": [ |
JasonConger
/ CtxConfigLog.ps1
Created
October 15, 2015 20:16
Citrix Configuration Log with Property Old and New Values (in JSON format)
View CtxConfigLog.ps1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Create a UDL file to access the SQL database | |
| Add-Content C:\conflog.udl –Value $null; Start-Process C:\conflog.udl | |
| # Load the Citrix Common Commands Snapin | |
| Get-PSSnapin -Registered "Citrix.Common.Commands" | Add-PSSnapin | |
| # Get the configuration log and convert to JSON | |
| Get-CtxConfigurationLogReport -DataLinkPath C:\conflog.udl | ConvertTo-Json -Depth 10 |
View savedsearches.conf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [ICA RTT - Yellow] | |
| action.email.reportServerEnabled = 0 | |
| action.email.useNSSubject = 1 | |
| action.script = 1 | |
| action.script.filename = octoblu_trigger.py | |
| alert.digest_mode = True | |
| alert.suppress = 1 | |
| alert.suppress.period = 1m | |
| alert.track = 0 | |
| counttype = number of events |