Can Domain logs be separated by the OU?

The server for the whole place has many OU's.  My portion of it will be one OU.  I need to review the logs on a daily basis.  Is it possible for me to recieve the logs pertaining only to my OU?  Are there any applications out there that will allow me to do this?
awakeningsAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

TheCleanerCommented:
What do you mean by "domain logs"?

If you mean security event logs on the domain controller, no they cannot be "divided" up that I know of based on what OU the user is in.
0
awakeningsAuthor Commented:
Yes, I mean security logs on the domain controller.  Come to think of it though, I should probably get application and system logs in order for us to remain compliant.  I think you are right, but I have found that some people are knowledgable of applications and the answers surprise me.  I'll give you points for your answer, but I want to see if someone else pulls a rabit out of their hat with an application.  Thanks!
0
TheCleanerCommented:
Well you are welcome to look at things like EventSentry http://www.eventsentry.com/

or LanSELM http://www.gfi.com/lanselm/

but again, they are for consolidation of event logs from multiple servers.

You'd have to design something using Log Parser www.logparser.com that is custom to you, but will be a pain to setup and manage.



0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
awakeningsAuthor Commented:
Thanks!  I'll see if anyone else comes up with something as well!  I do parse quite a few logs myself with perl and swatch, but I know I will not be allowed to touch the domain server and I need the logs through some means -- especially for our users (and not for the whole corporation).  I'm sure it will be a pain.

Thanks!
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2003

From novice to tech pro — start learning today.