Set up alerts in LogMeIn Resolve

Alerts make sure that you are aware of potential issues with your devices. When an alert is triggered, admins receive an email about the issue and let the admin manage the relevant device or create a Helpdesk ticket directly from the alert.

Remember: Alerts are available for users with Standard or Premium licenses. Alerts can be set up for verified devices only.

In the Console, go to the Devices > Alerts page.
Select Manage alert policies in the top-right corner.
You only see this option if you already have alert policies set up. Otherwise, you are taken to the next step.
Select Create new alert policy.
From the drop-down, select how you want to create a policy:
- Create custom alert policy: Creates a policy from scratch.
- Windows workstation preset: Preselects a set of alerts that are generally applied to Windows workstations. It also selects applicable devices to the policy that you can modify later.
- Windows server preset: Preselects a set of alerts that are generally applied to Windows servers. It also selects applicable devices to the policy that you can modify later.
The New alert policy page is displayed.
Optional: If you selected to create a custom policy from scratch, choose the platform where you want to create alerts and select Next step.
From the Available alerts panel, drag-and-drop the alert type that you want to set up and select Next step.
You can add a predefined set of alerts to your policy by selecting the Presets tab and then selecting an alert preset.
Select the devices where you want to add alerts.
You can filter devices in the following ways:
- Choose between displaying individual devices and device groups
- Select Add filter to display properties that you can use to filter your device list. You have the following options:
  - Connection status
  - BitLocker encryption
  - Device group
  - Device label
  - Geolocation
  - Online status
  - Last boot time
Important: You can only see those device groups that you have access to.
Select Next step.
Add a name and description to your alert policy.
Optional: Toggle Send email and add the recipients to be notified when alerts are sent.
Optional: Toggle Send push notification and select the agents from the drop-down list who will be notified on their mobile devices about incoming alerts.
When an agent taps a notification, the Alerts page opens in the LogMeIn Resolve mobile app where the newest alerts are listed on top.
Select Activate policy.
Enter your zero trust signature key to finish.
Result: You can set up an unlimited number of alert policies.

Available alerts in LogMeIn Resolve

You can choose from the following alerts:

Note: Are you looking for self-healing alerts? See Create self-healing alerts

CPU usage: Use the CPU usage alert to monitor processor utilization on a device or across a group of devices. CPU usage is measured as a percentage of the total available CPU power. An alert is triggered when usage reaches the threshold and is held for the specified duration.You can define duration in minutes, hours, and days.
Memory usage: Use the memory usage alert to monitor memory utilization on a device or across a group of devices. Memory usage is measured as a percentage of the total available memory. An alert is triggered when usage reaches the threshold and is held for the specified duration.You can define duration in minutes, hours, and days.
Free disk space: Use the free disk space alert to monitor the space remaining on a defined disk drive on a device or across a group of devices. An alert is triggered when free disk space falls below the defined minimum as expressed in MB, GB, or as a percentage of the total size of the disk.
Software inventory change: Use the software inventory change alert to monitor whether new software is installed or existing software is uninstalled from a device or across a group of devices. Select Include windows update installations to receive alerts whenever a Windows update is installed or uninstalled.
Custom script monitoring: Use your custom PowerShell script to receive alerts about events of your choice. Upload or write your own monitoring script, or let AI guide you through creating one. Depending on your needs, you can track numbers (such as folder size) and strings (such as file names).
You can also choose from pre-defined scripts by selecting Open script library. Built-in scripts cover the most common use cases. An alert is triggered when usage reaches the threshold and is held for the specified duration. You can define duration in minutes, hours, and days. For information about working with AI-generated scripts in LogMeIn Resolve, see Use Artificial Intelligence to write Remote Execution scripts
Connection status: Use this alert type to monitor when a device goes offline or comes online. An alert is triggered when the connection status of the device changes and the specified duration elapses. You can define duration in seconds, minutes, hours, and days, up to 180 days.
Tip: An alert policy that monitors when devices go offline sends alerts even when the LogMeIn Resolve applet on a device stops or is intentionally stopped.
Windows event log: Monitor Windows events that are collected in the Event Viewer on your devices. This helps you identify events such as failed login attempts, malicious registry changes, potential malware activity, or detecting a potential brute-force activity. To set up this alert, select a Log category for your events and one of the following details:
- Event level: The severity of the event from Critical to Debug
- Event source: Indicates the software component or application that generated the event. This helps determine the root cause of the event. You can find the name of the source in the Event Viewer of a Windows device.
- Event ID: A unique identifier for each recorded event in the Windows Event log, providing information on the type or action of the event.
  Note: Event ID and Event source together may provide contextual information. For example, Event ID 4624 is logged when a user successfully logs on to a Windows device. However, this event can be logged both when a user logs into a Set up alerts in LogMeIn ResolveWindows computer (Event source is 'Microsoft Windows security') and when the login is performed remotely via Remote Desktop Protocol (Event source is 'Microsoft Windows TerminalServices-LocalSessionManager').
- Keyword in log message: Type a keyword that you are looking for in events
Finally, add a brief Alert description to identify this alert in LogMeIn Resolve later on, and set a Priority for your alert.
Antivirus status: Monitors the antivirus software running on the remote device. You can set up the following conditions to trigger an alert:
- No antivirus scan since: Triggers an alert when the remote device has not been scanned for virus threats for the defined number of days.
- Virus definition out of date: Triggers an alert when the antivirus database definition is outdated.
- Threat found: Triggers an alert when an antivirus threat is found.
- Real-time protection: Triggers an alert when Windows real-time protection is either Enabled or Disabled on the remote host.
- Firewall: Triggers an alert when the firewall is either Enabled or Disabled on the remote host.
After setting up your alert, decide if any or all conditions must be met to trigger the alert.
Service status: Monitor the status of Windows services running on your devices. To find the name of a service, open Task Manager and go to the Services page. You have the following options to monitor Windows service status:
- Service starts: monitors when the selected service starts on the remote device.
- Service stops: monitors when the selected service stops automatically or manually on the remote device.
- Service crashes: monitors when the selected service stops unexpectedly on the remote device.
Finally, select the Priority level for your alert.

Article last updated: 19 March, 2025

Were you able to complete your task?

GoTo Connect

GoTo Meeting

GoTo Webinar

GoTo Room

GoTo Training

OpenVoice

Grasshopper

join.me

LogMeIn Resolve

LogMeIn Resolve MDM

LogMeIn Pro

LogMeIn Central

LogMeIn Rescue

GoToMyPC

GoToAssist

Hamachi

RemotelyAnywhere