Link to home
Start Free TrialLog in
Avatar of markpalinux
markpalinuxFlag for United States of America

asked on

log remote desktop connections

We use Remote Desktop for administration on all of our servers, is there a good way to log items when IT staff connect to remote desktop?

We would like to log:
logon time, logon name, client ip address.

It could go to a local file or security log.

Thanks,
Mark
ASKER CERTIFIED SOLUTION
Avatar of oBdA
oBdA

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Be sure you enable Audit system event on Local security Policy so your server can log this event.
Administrative Tools --> Local Sec Policy --> Local Policy --> Audit Policy --> Audit systems event --> check both success and failure.

K
Avatar of markpalinux

ASKER


Now  to find an easy vbs script to pull all 528 events with a logon type of 10.
I wonder what a RDC with /console would show?

Thanks,
Mark