asked on

remote viewing event log of another computer

Currently, I have to net use a remote computer resource and able to view the event log of the remote computer under Computer Management (windows 2000)

For security reason, it is required to stop "remote registry service" in Windows 2000 which make remote event log viewing failure.

However, we have to monitor the event log of other computer to see whether there is any
application error.

Can it be achieved?

Julian_C

Have you tried running psloglist out of the freeware pstools on www.sysinternals.com? It's not a nice clean solution but you could shell out to it and get it to dump the logs to a file. Worth a try. Unfortunately they don't list the source code for this tool as they do for many of the others. BUT if it does work it's using the Win32 API calls (not WMI etc I think) so you might find the following article helps you.

http://www.ftponline.com/archives/premier/mgznarch/vbpj/2001/11nov01/lj0111/lj0111-1.asp

Cheers
Julian

Julian_C

Sorry, I just reread your question and see that you aren't having to code this, just view the logs. In which case psloglist may well assist.

Cheers
Julian

juliancrawford

you could use eldump.exe to extract the remote event logs
http://www.ibt.ku.dk/jesper/ELDump/default.htm

alexchiu

ASKER

Thanks for your comment.
However, I have to switch off the "Remote Registry Service". After switching off, both of the tools do not work to dump the log.

ASKER CERTIFIED SOLUTION

Julian_C

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial