Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Comments for event ID 2268 currently in the processing queue.

Note: We have not reviewed this information yet so it is unfiltered, exactly how it was submitted by our contributors.

Event ID: 2268
Event Source: W3SVC-WP
Event Type: Error
Event Description: ISAPI Filter aborted
Comment:
Event ID: 2268
Event Source: W3SVC-WP
Event Type: Error
Event Description:
Event Type: Error

Event Source: W3SVC-WP
Event Category: None
Event ID: 2268
Date: 24/06/2010
Time: 13:18:00
User: N/A
Computer: MachineName
Description:
Could not load all ISAPI filters for site/service.  Therefore startup aborted.

For more information see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 05 00 00 00               ....    

Comment: The ISAPI filter can fail to load for a number of reasons - the isapi_redirect.properties configuration file may contain a typo the IIS configuration may not have been set up correctly... However it is rarely mentioned that folder permissions need to be granted for the Apache folders containing the ISAPI DLL configuration libraries and the folder where the logs will be written. If everything else seems to be configured correctly this will probably solve the problem.

You will get event ID’s 2214 and 2268 in the application log if the file permissions are not set up right and the ISAPI filter will fail to load (red downward arrow) in the IIS Manager. These are the minimum required permissions for the local accounts described

Folder Local Account Permissions Required
Apache\Tomcat\Conf NETWORK SERVICE Read
Apache\Tomcat\ISAPI NETWORK SERVICE Read
Apache\Tomcat\ISAPI IUSR_machineName Read
Apache\Tomcat\lib NETWORK SERVICE Read
Apache\Tomcat\logs NETWORK SERVICE Read & write

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.

Read more...

 

Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.

Read more...