To say that some event log messages descriptions are cryptic is an understatement. We, at EventID.Net, have decided to start adding plain English "translation" for some of these messages. This information is only available through an EventID.Net Subscription, a modest price for the work done by our consultants.
This could also be a way to describe the problem to your manager! Tip: First just mention the actual description and if you get a blank stare, wait a couple of seconds and then say "Ok, what this actually means is...." and gave the plain English version.
English translation is "not applicable"
Some event id / source combinations have a large variety of the actual event description. Basically, the programmers of that
application had the application record just one event id and fill-up the description with whatever message they want to be recorded in that situation. To add an "English translation" for this type of events it's useless - it would be just a statement similar to: "I encountered an error, see the event description for details".
One example is event id 17055 from MSSQLServer source. Basically, the event description has a template like this: error code: error description. Regardless of the error code/description combination they use the same event id and source. For such cases you will see the "English, please" field as "Not applicable". When possible, we will create a different record for each instance of that event id / source combination.
Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.
Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.