?
Solved

How can I log IP address of failed remote logons?

Posted on 2006-11-07
2
Medium Priority
?
182 Views
Last Modified: 2010-04-11
I have denied access to a user (disabled account). I am still seeing remote logon failures for this account in event log. I would like to ability to log the originating IP address of these remote logons in case we need to take this farther. How can I do this?
0
Comment
Question by:FIFBA
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 18

Expert Comment

by:PowerIT
ID: 17890920
A little more info please. Is this to a specific (intranet) application, to a VPN, to fileshares, terminal servers, client PC etc ...
Also: what is the architecture: firewall, operating systems, etc ... would be helpfull.

J.
0
 
LVL 5

Accepted Solution

by:
darrenakin earned 1000 total points
ID: 17891049
Go to your Event Log and look at the failed attempts, it will have the IP listed here
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hey fellow admins! This time, I have a little fairy tale for you. As many tales do, it starts boring and then gets pretty gory. I hope you like it. TL;DR: It is about an important security matter, you should read it if you run or administer Windows …
I don't pretend to be an expert at this, but I have found a few things that are useful. I hope that sharing them here will help others, so they will not have to face some rather hard choices. Since I felt this to be a topic of enough importance and…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

718 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question