IMPORTANT: No additional bug fixes or documentation updates will be released for this version. For the latest information, see the current release documentation.
« Configure an HTTP endpoint for metrics Configure APM instrumentation »
Elastic Docs Winlogbeat Reference [8.12] Configure Winlogbeat Configure an HTTP endpoint for metrics

Event Processing Metrics

edit
IMPORTANT: This documentation is no longer updated. Refer to Elastic's version policy and the latest documentation.

Event Processing Metrics

edit

Winlogbeat exposes metrics under the HTTP monitoring endpoint. These metrics are exposed under the /inputs path. They can be used to observe the event log processing activity of Winlogbeat.

Winlog Metrics

edit
Metric Description

provider

Name of the provider being read.

received_events_total

Total number of events received.

discarded_events_total

Total number of discarded events.

errors_total

Total number of errors.

received_events_count

Histogram of the number of events in each non-zero batch.

source_lag_time

Histogram of the difference between timestamped event’s creation and reading.

batch_read_period

Histogram of the elapsed time between non-zero batch reads.
« Configure an HTTP endpoint for metrics Configure APM instrumentation »