Advertisement

07.22.2008 at 10:29AM PDT, ID: 23585857
[x]
Attachment Details

Event Log - User Logon/Logoff monitor

Asked by pzozulka in Automation, Windows Network Security, Windows 2003 Server

Tags:

Hello Experts,

I am looking for "custom" ideas on how to centrally monitor user logon/logoff activity. Found some software out there that can monitor these things, but nothing out there to do exactly what we need.

EXACTLY what we need:

Monitor workstations in domain and record Logon/Logoff activity.
(Already have GPO settings for this: "Audit account logon events", "audit logon events")

Need to pull this info from workstations to central server. This is easily done manually, by going to the Event Log on Server and "Connect to remote machine", then pull the logs.

However, I need to pull only certain logs (Logon/Logoff) from workstation, AND I need this to be an automated process.

Can this be done? If so, how?

Any ideas?

Thanks.Start Free Trial
[+][-]07.23.2008 at 12:36AM PDT, ID: 22066799

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Automation, Windows Network Security, Windows 2003 Server
Tags: Event Log, Event Monitor, Windows Server 2003
Sign Up Now!
Solution Provided By: bbao
Participating Experts: 1
Solution Grade: A
 
 
[+][-]07.23.2008 at 09:15AM PDT, ID: 22070829

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]07.23.2008 at 08:39PM PDT, ID: 22075946

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]07.24.2008 at 12:03AM PDT, ID: 22076649

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628