Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 3161 Source: MSExchangeMTA

Source
Level
Description
An internal MTA error occurred. The logon violated security. Entity name: . Error code: 0. [XAPI MAIN BASE 35 92] (14)
Comments
 
According to Microsoft, this is a permissions issue. See ME154298 and MSEX2K3DB for additional information about this event.
As per Microsoft: "This Event ID is logged in the Windows NT Event Viewer application log if the account listed on the Override tab of the Site Connector in the Microsoft Exchange Administrator program does not have Service Account Admin rights on the Configuration and Site containers". See ME152624 for more details.
As per Microsoft: "To resolve this issue, make sure that the Permissions pages for the organization, site, and configuration objects list the service account with the Service Account Admin role.". See the link below for more details.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.

Read more...

 

Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.

Read more...