the security log on this system is full only admin can login to fix

Posted on 2010-09-04
Last Modified: 2012-05-10
Was there an update that I missed?  Recently I have been bombarded with this error and have to clear/reset the Security Log via Active Directory.

I dont see any recent updates or changes on these pc's  So far it s effecting WinXP boxes not Win7.

Any ideas?

Question by:mebibyte
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2

Expert Comment

ID: 33605311
are your win xp machines set up for some kind of audit logging like windows xp firewall or any other or is it the security log of the server that is getting full?

Accepted Solution

GridLock137 earned 500 total points
ID: 33605323
also on the system you are getting the message on check the follwoing:

right click on my computer> select manage> open even viewer> drill down to security log> right click and select property and under the general and filter tabs check your settings and how often you are auditing these events and also check the filters being used. there might be a domain policy set for your xp machines on the server that may be applied for these machines alone. give that a shot.

Expert Comment

ID: 33605389
I had the same prob a few months ago I used this MS kb.
[Live Webinar] The Cloud Skills Gap

As Cloud technologies come of age, business leaders grapple with the impact it has on their team's skills and the gap associated with the use of a cloud platform.

Join experts from 451 Research and Concerto Cloud Services on July 27th where we will examine fact and fiction.


Author Comment

ID: 33605441
By default these pc's are set to Max Log = 512KB  | Overwrite events older than 7 days  |  Filters: Info, Warnings, Error, Success and Failure Audit.

I have to change the settings to Overwrite events as needed then it goes away.


Expert Comment

ID: 33605463
if this is one machine you could have something happening on there that could be causing the log to fill up prior to the 7 days, check the logs and see what is happening, if you have audits pointing out login failures then maybe depending on the role of this machine, something could be trying to auhtenticate to that machine for some type of service, aslo what has changed recently on this machine?

Expert Comment

ID: 33605476
you can also try this:


Expert Comment

ID: 33605800
If all the log entries look legit then I would increase the max log size so it can accommodate 7- 8 days worth of logs.

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question