asked on

logparser select from security does not work on vista ???

SELECT
to_date(timegenerated) AS Date,
quantize(to_time(timegenerated), 3600) AS Hour,
Count(*) AS Number_of_Events
FROM Security
WHERE EventID=528
AND date='2004-09-01 00:00:00'
GROUP BY date,
hour

W:\sqlparser>logparser.exe file:DetailingUserLogins.sql -i:EVT -o:datagrid
Task aborted.
Cannot open <from-entity>: Error opening event log "Security": Dem Client
fehlt ein erforderliches Recht.

Statistics:
-----------
Elements processed: 0
Elements output: 0
Execution time: 0.01 seconds

DebugNT

Dem Client fehlt ein erforderliches Recht. translated to English The client is missing a required legal

Run the command prompt as administrator.

ahoffmann

the user calling logparser does not have proper permissions to read the events, try with user administrator (as usual in windoze:)

hgraesslin1

ASKER

well, I do not found any administrator on my vista box. Unfortúnately my login user is Administrator, or lets say belongs to the administrator group. I think the security model in vista has changed, so I need to run a command shell using the runas command in cmd.
But...
runas /user:Administrator cmd
Geben Sie das Kennwort für "Administrator" ein:
Es wird versucht, cmd als Benutzer "HANS-SENYO\Administrator" zu starten...
RUNAS-FEHLER: cmd kann nicht ausgeführt werden
1327: Anmeldung fehlgeschlagen: Benutzerkontenbeschränkung. Mögliche Ursachen hierfür: leere Kennwörter sind nicht zuläs
sig, Anmeldezeitbeschränkungen, oder eine Richtlinienbeschränkung wurde angewendet.

I just changed the password of the administrator ???

ASKER CERTIFIED SOLUTION

DebugNT

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial