This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 9%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESV%3C/text%3E%3C/svg%3E)
I have configured event forwarding in my server. All logs are forwarding except the security log. I have done all the troubleshooting procedures stated in forums like adding the user as a network log reader, registry settings, and permissions but end in vain. This is configured using the collector initiated method.I have also tried the source initiated method and received the following error in the event forwarding log.
The forwarder is having a problem communicating with subscription manager at address http://xxxxxx. Error code is 2150859195 and Error Message is <f:WSManFault xmlns:f="http://schemas.microsoft.com/wbem/wsman/1/wsmanfault" Code="2150859195" Machine="xxxxxxx"><f:Message>The WinRM client cannot process the request. Default authentication may be used with an IP address under the following conditions: the transport is HTTPS or the destination is in the TrustedHosts list, and explicit credentials are provided. Use winrm.cmd to configure TrustedHosts. Note that computers in the TrustedHosts list might not be authenticated. For more information on how to set TrustedHosts run the following command: winrm help config. </f:Message></f:WSManFault>.
can somebody explain what may be the error.Thanks in advance.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 30%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEY%3C/text%3E%3C/svg%3E)
Hi,
Have you checked if the answer helps?
If the Answer is helpful, please click "Accept Answer" and upvote it. Thanks.
Hi,
If you tried source initiated, please follow below actions in this thread to see if it helps.
Do is there any error message when you configured using the collector initiated method?
Thanks,
If the Answer is helpful, please click "Accept Answer" and upvote it. Thanks.