Running SolarWinds Orion to monitor Open Systems environment, and using Automation Point (AP) to monitor the Orion server event log to integrate mainframe and Open Systems alerting.
After upgrade of Orion to get it to supported levels it seems to have introduced a change to the application event log records written, and although there is a small change in the "Provider Name" string, AP no longer can read the text and interpret it.
The old event messages from the "Alerting Engine" are still written which still work fine with AP, but the new ones from "SolarWinds.BusinessLayerHost Action" causes AP to throw up these types of error messages:
The description for Event ID (3003) in Source (SolarWinds.BusinessLayerHost Action) could not be found. It contains the following insertion string(s): HEART R
S=NMA-P-SWINDS-A1 V=9.5 G C=Disk-Data T=20200519-1756
The description for Event ID (3003) in Source (SolarWinds.BusinessLayerHost Action) could not be found. It contains the following insertion string(s): HEART R
S=NMA-P-SWINDS-A1 V=43.5 G C=Disk-Data T=20200519-1756
The Orion upgrade added an additional component "SolarWinds.BusinessLayerHost Action" resulting in the AP server errors "The description for Event ID (3003) in Source (SolarWinds.BusinessLayerHost Action) could not be found ...".
To resolve the problem a new registry key similar to #2 above was created for the new component i.e.
Under "HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application" create new sub-key with the name of the new Source/Provider Name "SolarWinds.BusinessLayerHost Action" and under that new sub-key add an Expandable String Value (REG_EXPAND_SZ) with name "EventMessageFile" assigned to the full path of the EventLogMessages.dll file.