Archiving event logs automatically

Posted on 2005-04-28
Last Modified: 2008-01-09
I need to archive event logs on my 2003 standard server for IT audit purposes and would like to have this as an automated process.  I've looked at the following two programs that can do this:

Event Archiver

But they both require a service account with domain admin rights which bothers me.  Is there a program (free or paid but preferrably with atleast a free trial) out there that will archive event logs without domain admin rights or is it simply that the process of archiving event logs requires domain admin rights?

I don't want to archive event logs of any other clients on my domain.....just on my DC.
Question by:luv2smile
    LVL 2

    Expert Comment

    we use which is very good.

    if it's just simply archiving the event log, try using the dumpel commad line tool.

    LVL 18

    Author Comment

    It does sound like a great program. Maybe I'm just being too harsh, but I just don't like the idea of running a service under a domain admin account.

    The problem with dumpel is that I want something that will archive the logs without any interaction from me. I don't want to have to remember to save or dump event logs each day.
    LVL 2

    Accepted Solution

    i no what you mean, i dont like giving anything admin rights, but we have not had any issue with the product.

    I'm more concerned with them keep static passwords, what we do is have serveral accounts starting with sys.funtion - i.e. sys.lon.backupexec

    you can always create a batch scipt with dumpel, and run it as a scheduled task.... although, if it were me i'd go for the paid option, as it's only £500.

    LVL 9

    Assisted Solution

    Here's a whole section on management of Event Logs using VBScripts.

    Assisted Solution

    Doesn't really answer your question as such - but the Free Microsfot tool mentioned here:
    (near the end of the page)

    **might** be of use?

    Eventcomb.exe gathers and manages logs, allows you to search for specific events etc, and save them off. Still manual, but slightly less so than EventViewer.
    LVL 18

    Author Comment

    Thanks guys. I split the points for the suggestions.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Hello I read in a discussion about a person who configured a very simple mirror RAID with two hard drives; the system and data were on the same partition. He asked how to repair the system as it was not booting up anymore. In his case running …
    Windows 7 does not have the best desktop search built in. This is something Windows 7 users have struggled with. You type something in, and your search results don’t always match what you are looking for, or it doesn’t actually work at all. There ar…
    Need more eyes on your posted question? Go ahead and follow the quick steps in this video to learn how to Request Attention to your question. *Log into your Experts Exchange account *Find the question you want to Request Attention for *Go to the e…
    This video is in connection to the article "The case of a missing mobile phone (". It will help one to understand clearly the steps to track a lost android phone.

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now