SLM 1.2.0.2
Event Source: SQL Server 2005 SP4
all the logs received on SLM are presented under the 'Default Severity' ... i.e if I create/drop a table, query a record, failed to authenticate(by providing wrong password).. everything that I do on SQL Server, comes/display with the default severity on SLM... why ? I think there must be different severity levels for 'query record' , 'authentication failure' and 'table creation/deletion' events... while in this setup every record/event comes/display under the Default Severity(the default severity of SQL Server Collector is 3).. which is not good.
as per the SQL Server Collector Document (pg 11)
Pre-defined Collector Parameters
Default Severity:
Most supported input records will be mapped to a Sentinel Severity
for easy comparison against other events. For the case where this
cannot be determined, this parameter is used to define the default.
Event Source: SQL Server 2005 SP4
all the logs received on SLM are presented under the 'Default Severity' ... i.e if I create/drop a table, query a record, failed to authenticate(by providing wrong password).. everything that I do on SQL Server, comes/display with the default severity on SLM... why ? I think there must be different severity levels for 'query record' , 'authentication failure' and 'table creation/deletion' events... while in this setup every record/event comes/display under the Default Severity(the default severity of SQL Server Collector is 3).. which is not good.
as per the SQL Server Collector Document (pg 11)
Quote:
Pre-defined Collector Parameters
Default Severity:
Most supported input records will be mapped to a Sentinel Severity
for easy comparison against other events. For the case where this
cannot be determined, this parameter is used to define the default.