Release Note
PRODUCT DOCUMENTATION
-
LogicMonitor Platform
- Introduction to LogicMonitor
- In-App Resources
-
Account Information
- Portal Information
- Portal Settings
- Financial
-
Usage Reporting
- Usage Reporting Overview
-
Product-Specific Usage Reporting
- Usage Reporting for APM Metrics
- Usage Reporting for LM Logs
- Usage Reporting for SaaS Monitoring
- Usage Reporting for IaaS Monitoring
- Usage Reporting for PaaS Monitoring
- Usage Reporting for APM Traces
- Usage Reporting for APM Synthetics
- Usage Reporting for Devices
- Usage Reporting for Websites
- Usage Reporting for Wireless Access Points
- Audit Logs
- Ops Notes
- Security Settings
- User Access
- Collectors
-
Dashboards
- Dashboards Overview
- Dashboard Creation
- Modern Dashboards
- Adding Dashboard Groups
- Finding Dashboards and Dashboard Groups
-
Widgets
- Widgets Overview
- Widgets Creation
- Widget Datapoint Configurations
-
Widget Types
- Alert List Widget
- Big Number Widget
- Netflow Widget
- NOC Widget
- Log Query Widget
- Pie Chart Widget
- Table Widget
- Text Widget
- Website Status Widget
- Custom Graph Widget
- SLA Widget
- Topology Map Widget
- Gauge Widget
- HTML Widget
- Job Monitor Widget
- Map Widget
- Resource Explorer Widget
- Recommendations Widget
- Billing Widget
- Widget Management
- Standard Widget Configurations
- Enabling Dashboard Text Widget Script Security
- Dashboard Management
- Dashboard Distribution
-
Resource Tree
- Navigating the Resources Page
- Changing the Time Range
- Remote Session
- Using Ops Notes
- Resources Details
- Resource Groups
- Resource Management
- NetScans
- Resource Explorer
- Services
- LM Uptime Overview
-
Websites
- Data Monitored for Websites
- Websites Page Overview
- Alerting on Websites Data
- Trace Route for Websites
-
Websites Management
- Websites Default Settings
- Web Check
- Ping Check
- Testing the Steps of a Web Check
- Creating a Website Dashboard
- Website Properties
- Website Management
- Executing Internal Web Checks using Groovy Scripts
- Web Checks with Form-Based Authentication
- Websites SDT
- Disabling External Website Testing Location Across your Account
- Understanding Website Status Codes
- Websites Groups
- Mappings
- Alerts
-
Reports
- Choosing a Report Type
- Creating a Report Group
- Shared Report Access
-
Report Types
- Alert Forecast Report
- Alert SLA Report
- Alert HealthCheck Report
- Alert Thresholds Report
- Alert Trends Report
- Alerts Report
- Audit Log Report
- Dashboard Report
- Interface Bandwidth Report
- Log Query Report
- NetFlow Resource Metric Report
- Resource Group Inventory Report
- Resource Inventory Report
- Resource Metric Trends Report
- Role Report
- SDT Inventory Report
- Server CPU Report
- Service Level Agreement Report
- User Report
- Website Overview Report
-
Modules
- Modules Overview
- Modules Installation
- Custom Module Creation
- Tokens Available in LogicModule Alert Messages
- Deprecated LogicModules
- Data Collection Methods
- Active Discovery
- Groovy Support
-
Module Configurations
- Types of Modules
- DataSource
- PropertySource
- AppliesTo
- SNMP SysOID Map Configuration
- JobMonitor
- ConfigSource
- TopologySource
- EventSource
-
LogSource
- LogSource Overview
- Configuring a LogSource
- Kubernetes Event Logging LogSource Configuration
- Kubernetes Pods LogSource Configuration
- Log Files LogSource Configuration
- Script Logs LogSource Configuration
- SNMP Traps LogSource Configuration
- Supported MIBs for SNMP Trap Translation
- Troubleshooting MIBs to JSON Converter Utility Issues
- Troubleshooting SNMP Traps Issues
- Modules Management
- Access Groups for Modules
- Security
-
LM Logs
- LM Logs Overview
- Log Ingestion
- Log Processing
- Logs Partition
- Log Anomaly Detection
- Log Analysis
- Viewing Logs and Log Anomalies
- Reset Log Anomaly Detection
- Log Patterns
- Log Query Language
- Log Processing Pipelines
- Log Alert Conditions
- Logs Roles and Permissions
- LM Logs Usage Data
- Troubleshooting Logs
-
Cloud Monitoring
- Introduction to Cloud Monitoring
- Cloud Services and Resource Units
- Monitored Locations for Cloud Monitoring
- Cloud Monitoring using a Collector for Existing Cloud Resources
- Monitoring Utilized Cloud Service Limits
- Custom Event Integrations Setup
-
Amazon Web Services Monitoring
- AWS Monitoring Setup
- AWS Organizational Unit Monitoring Setup
- Using StackSets to Automate Role and Policy Creation
- AWS Billing Monitoring Setup
- CloudWatch Costs Associated with Monitoring
- Managing your AWS devices in LogicMonitor
- AWS Tag Usage in LogicMonitor
- Customizing AWS CloudWatch DataSources
- Troubleshooting Custom AWS CloudWatch DataSources
- Microsoft Azure Monitoring
- Google Cloud Platform Monitoring
- MongoDB Atlas Monitoring
- Cost Optimization
- Cloud Data Collection with Poll Now
- SaaS Monitoring
-
Edwin AI
- Introduction to Edwin AI
- Key Concepts in Edwin AI
- Edwin AI Roles and Users
- Configure Edwin AI Dashboard
- Configure Edwin AI Models
- Configure Edwin AI Actions
- Edwin AI Rules
- Working with Edwin AI
- Export and Import Edwin AI Configuration
-
Edwin AI Integrations
- Edwin AI Integrations Overview
- Edwin AI Monitoring Integrations
- Edwin AI IT Service Management Integrations
-
LM Integrations
- LogicMonitor Integrations Overview
- Navigating the Integration Page
- Communications Integrations
- Workflow Integrations
- Automation Integrations
- Custom Integrations for LogicMonitor
- Logs for LM Integrations
-
Container Monitoring
- About LogicMonitor Container Monitoring
-
Kubernetes Monitoring
- Support Matrix for Kubernetes Monitoring
- Kubernetes and LM Containers Key Concepts and Terms
- Kubernetes Monitoring Considerations and Required Permissions
- Resource Sizing for Performance Optimization and Tuning Recommendations
- LM Container Installation
- LM Container Upgrade
- LM Container Uninstallation
- Existing Configuration Migration
- Kubernetes Events and Pod Logs Collection
-
Resource Monitoring
- Monitoring Helm Charts Releases
- Kubernetes Core Components Monitoring
- Monitoring Kubernetes Clusters with kube-state-metrics
- Filtering Kubernetes Resources for Monitoring
- NGINX Ingress Controller Monitoring
- Kubernetes Certificates and cert-manager Monitoring
- Disabling Alerts on Kubernetes Resources
- Default Filtering for Kubernetes Resources
- Filtering Kubernetes Resources using Labels, Annotations, and Selectors
- Disabling Resources from Monitoring
- Retention of Deleted Kubernetes Resources using LM Containers
- Retaining Deleted Kubernetes Resources
- Advanced Configuration
- Monitor Supported Resources
- Topology for Kubernetes Cluster
- Kubernetes Cluster Monitoring as Non-Admin User
- Troubleshooting Kubernetes Monitoring
- Docker Monitoring
-
LM APM
- LM APM Overview
- Quick Steps to Setup LogicMonitor APM
-
Push Metrics
- Getting Started with Push Metrics
- Use Cases for Push Metrics
- About the Push Metrics REST API
- Ingesting Metrics with the Push Metrics REST API
- Python SDK for Push Metrics API
- .NET SDK for Push Metrics API
- Managing Resources that Ingest Push Metrics
- Rate Limiting for Push Metrics
- Updating Instance Properties with the Push Metrics REST API
- Updating Resource Properties with the Push Metrics REST API
- OpenMetrics Integration
-
Distributed Tracing
- Distributed Tracing Overview
- Application Authentication Overview
- Traces Page
- Application Instrumentation for LogicMonitor
- Trace Data Forwarding to LogicMonitor
- OpenTelemetry Collector for LogicMonitor Overview
- Synthetics
-
Monitoring Solutions
- Apache
- APC
- AI Monitoring
- Atlassian
- AWS
- Azure
- Broadcom
- Cato Networks
- Checkpoint
-
Cisco
- Cisco APIC Monitoring
- Cisco ASA/ASR
- Cisco Catalyst Center
- Cisco Catalyst SD-WAN Monitoring
- Cisco CUCM API Monitoring
- Cisco Device SNMP and NTP Configuration
- Cisco Firepower Chassis Manager Monitoring
- Cisco Firepower Threat Defense Monitoring
- Cisco Hyperflex Monitoring
- Cisco Intersight Monitoring
- Cisco IP SLA Monitoring
- Cisco ISE Monitoring
- Cisco Meraki Monitoring
- Cisco UCCX Monitoring
- Cisco UCS Monitoring
- Cisco UCS X Monitoring
- Cisco Unified Call Manager (CUCM) Monitoring
- Cisco VoIP Monitoring
- Cisco Wireless Monitoring
- Citrix
- Cohesity
- Common Config
- CommVault
- ConnectWise
- Couchbase Server
- Dell Technologies
- Email Service
- Extreme Networks
- F5
- FreeBSD
- Fortinet
- HPE
- IBM
- IMPI
- Infinidat
- Infoblox
- Java
- Jenkins
- Juniper
- Kemp
- Kubernetes
- Linux
- LogicMonitor
- LSI MegaRAID Controller
- Microsoft
- MongoDB
- NetApp
- Network Traffic Monitoring
- NTP
- Nutanix Systems
- OpenAI
- Oracle
- Palo Alto Networks
- Panzura
- Perfmon Access
- Pick
- Puppet
- Pure Storage
- Quantum
- RabbitMQ
- Redis
- Rubrik
- Ruckus
- SAP
- Slack
- SSL
- SNMP
- Sonicwall
- SumoLogic
- SwiftStack
- Ubiquiti
- Unomaly
- Varnish
- Veeam
- Versa SD-WAN
- Mobile
-
Developer
-
LogicMonitor REST API
-
REST API Overview
- Using LogicMonitor's REST API
- Migration to LogicMonitor REST API v3
- REST API Change Log
- REST API Authentication
- REST API Status Codes
- REST API Error Codes
- REST API Rate Limit
- REST API Troubleshooting
-
REST API v3
- REST API v3 Swagger Documentation
- LogicMonitor v3 SDK
- REST API Basic Filters
- REST API Advanced Filters
- Creating Services Using LogicMonitor REST API v3
- Delta Support for device/devices API
- Best Practices for Migrating to LogicMonitor v3 SDK
-
REST API v3 Endpoints
- Managing Alerts
- Managing Alert Rules
- Managing Cost Optimization Recommendations
- Managing Recipient Groups
- Managing Roles
- Managing Ops Notes
- Managing Report Groups
- Managing Dashboard Groups
- Managing Collector Groups
- Managing ConfigSources
- Managing EventSources
- Managing Collector Debug Command
- Managing Collector Version
- Managing NetScan
- Managing PropertySources
- Viewing Metrics
- Viewing Integration Audit Logs
- Viewing External APIs
- Managing AppliesToFunction
- Managing Devices
- Managing DataSources
- Managing Escalation Chains
- Managing API Tokens
- Managing DataSource Instances
- Managing Dashboards
- Managing Users
- Managing Audit Logs
- Managing Data
- Managing Access Group
- Managing OIDs
- Managing Device Groups
- REST API v2
-
REST API v1
- REST API v1 Overview
- Getting Data with the REST API
-
REST API v1 Endpoints
- Managing Alert Rules
- Managing Alerts
- Managing API Tokens
- Accessing Audit Logs
- Managing Collectors
- Managing Collector Groups
- Managing Dashboards and Widgets
- Managing Dashboard Groups
- Managing DataSources
- Managing DataSource Instances
- Managing Devices
-
Managing Device Groups
- About the Device Group Resource
- Add a Device Group
- Add Device Group Properties
- AWS Device Groups
- Azure Device Groups
- Delete Device Group Properties
- Delete a Device Group
- GCP Device Groups
- Get all alerts for a Device Group
- Get all SDTs for a Device Group
- Get Device Group Properties
- Get Device Groups
- Get devices for a particular device group
- Update a Device Group
- Update Device Group Properties
- Managing Escalation Chains
- Managing Ops Notes
- Managing Reports
- Managing Report Groups
- Managing Roles
- Managing SDTs
- Managing Websites
- Managing Website Groups
- Getting Websites Test Locations
- Managing Thresholds
- Managing Users
-
REST API Overview
- Scripting Support
-
LogicMonitor REST API
- Policies and Compliance
- Training and Education
-
Legacy UI
- Getting Started
- Devices
- Dashboards and Widgets
- AIOps
- LM Service Insights
- LogicModules
- Terminology and Syntax
- LM APM
-
Cloud Monitoring
-
Getting Started with LM Cloud
- LM Cloud Monitoring Overview
- Enabling Cloud Monitoring using Local Collector
- Visualizing your cloud environment with auto dashboards and reports
- Setting up custom event integrations
- Monitoring Cloud Service Limit Utilization
- Optimizing your Cloud Spend
- Cloud Data Collection
- Amazon Web Services Monitoring
- Google Cloud Platform Monitoring
- MongoDB Atlas Monitoring
-
Getting Started with LM Cloud
- Container Monitoring
- Monitoring Solutions
In this article
Feature Highlights
- Multiple Enhancements to Windows LogSource
- Support for OR Operator to Evaluate Filters in Syslog LogSource
- Support to run Windows_NonAdmin_Config.ps1 script in Domain Setup with Local User
LogicMonitor EA Collector 37.300 is released on April 24, 2025. It is based on the EA Collector 37.200 and includes the following additional updates.
Enhancement
Enhancements to Windows LogSource to Manage Log Ingestion and Filtering
LogicMonitor has now introduced the following multiple key enhancements to Windows LogSource to give you flexibility to manage log ingestion and filtering:
- On the Windows LogSource page, you can now choose timeWritten or timeGenerated as log timestamp using the Use timeWritten instead of timeGenerated as log timestamp switch.
- Switch Disabled (default and existing behavior)—The system derives the log timestamp for ingested WMI events using the timeGenerated field.
- Switch Enabled—The system derives the log timestamp for ingested WMI events using the timeWritten field. The original timeGenerated value is preserved in the
_winEvent.timeGeneratedlog metadata field in the yyyy-MM-dd HH:mm:ss z format. For example, 2025-02-13 21:20:00 IST.
- Addition of a single Filters section where you can specify filter along with type Exclude or Include. This replaces the previously introduced separate Exclude and Include sections.
- Support for the
ORoperator for filters using the Use OR instead of AND switch. When this switch is turned on, user you can drag and drop filter to specify the filter priority. Filters are evaluated in the order specified by the you. If an event qualifies any filter, the system takes the corresponding action based on the filter type that is Exclude (drop) or Include (ingest). - Fallback behaviour when the
ORoperator is selected for filter and you specify the following:- Only exclude filters and none of them are qualified, the event is included (ingested).
- Only include filters and none of them are qualified, the event is excluded (dropped).
- A combination of include and exclude filters and none of them are qualified, the event is included (ingested).
Note: When you disable the Use OR instead of AND switch, the system allows you to provide either Include or Exclude filters, but not both.
- Addition of new filter operators to the following attributes:
- Level—
NotEqualandNotMoreUrgentThan - LogName—
NotEqualandNotIn - EventId—
NotEqualandRegexMatch
- Level—
Enhancement
Support for OR Operator to Evaluate Filters in Syslog LogSource
Syslog LogSource now supports the Use OR instead of AND switch to filter log events using the OR operator. When you toggle the Use OR instead of AND switch, the specified filters are evaluated using the OR operator. If an event matches at least one filter, the system ingests it.
Enhancement
Support to run Windows_NonAdmin_Config.ps1 script in Domain Setup with Local User
LogicMonitor Collector now supports to run the Windows_NonAdmin_Config.ps1 script in domain setup with local user. This is a new addition to the existing support for running the script in domain setup with domain user and non-domain setup with local user. You can also roll back the changes using the existing rollbackToAdmin.ps1 script.
Enhancement
Support for NTLMv2 as the Default Protocol to Authenticate Remote WMI Hosts
NTLMv2 will be the default protocol to authenticate remote WMI hosts starting from EA Collector 37.300 or later. It replaces NTLMv1, the previous default protocol. For backward compatibility, NTLMv1 is still supported; however, LogicMonitor does not recommend NTLMv1.
Enhancement
Syslog and SNMP Trap LogSource Name Added When Logs are Processed through Agent.conf Flow
When the system ingests SNMP trap and Syslog events as LM Logs through LogSource, the ingested log has the _lm.logsource_name field populated with the name of the LogSource.
However when SNMP trap and Syslog events are ingested as LM Logs through agent.conf where lmlogs.snmptrap.enabled and lmlogs.syslog.enabled are set to true, the ingested logs have _lm.logsource_name field empty. As a result, it cannot be added to queries or filters and displayed a blank entry in the result of aggregate queries that included the _lm.logsource_name field. To bridge this gap, the ingested logs now have the _lm.logsource_name field populated with default.syslog_collector_logsourcefor Syslog and default.trap_collector_logsource for SNMP trap.
Resolved Issue
Upgraded version of the following files for minor security updates.
| File Component Name | Path | Current Version | Upgraded Version |
guava | LogicMonitor/Agent/lib/synthetics-monitoring-all-in-one.jar -> META-INF/maven/com.google.guava/guava | 31.0.1 | 33.4.0 |
json-smart | LogicMonitor/Agent/lib/synthetics-monitoring-all-in-one.jar -> META-INF/maven/net.minidev/json-smart | 2.4.7 | 2.5.2 |
ssleay | LogicMonitor\Agent\bin\ssleay32.dll | 1.1.0.d | libssl 3.0.12 |
jboss | LogicMonitor/Agent/lib/jboss-remoting-5.0.17.Final.jar | 5.0.17.Final | 5.0.30.Final |
groovy-all | LogicMonitor/Agent/lib/lib-groovy/v2/groovy-all-2.4.15.jar | 2.4.15 | 2.4.21 |
netty-common | LogicMonitor/Agent/lib/netty-common-4.1.109.Final.jar | 4.1.109.Final | 4.1.118.Final |
commons-io | LogicMonitor/Agent/lib/synthetics-monitoring-all-in-one.jar -> META-INF/maven/commons-io/commons-io | 2.11.0 | 2.14.0 |
jsoup | LogicMonitor/Agent/lib/synthetics-monitoring-all-in-one.jar -> META-INF/maven/org.jsoup/jsoup | 1.14.3 | 1.15.3 |
netty-common | LogicMonitor/Agent/lib/synthetics-monitoring-all-in-one.jar -> META-INF/maven/io.netty/netty-common | 4.1.68.Final | 4.1.118.Final |
netty-handler | LogicMonitor/Agent/lib/synthetics-monitoring-all-in-one.jar -> META-INF/maven/io.netty/netty-handler | 4.1.68.Final | 4.1.118.Final |
Resolved Issue
Fixed an issue where port 162, the default UDP port for SNMP traps, was occupied by a process other than LogicMonitor Collector that led to data collection failure.
Resolved Issue
Fixed an issue where if you run the Windows_NonAdmin_Config.ps1 script multiple times, the SDDL string made of user SIDs got appended multiple times to the parent SDDL of SCManager and all the Win32_Services.