asked on
I found a script that is suppost to login and logout information. I need to find login and logout information about a user and the event logs don't go back that far. I would think that AD would have that information. Here is the script that I have. I am useing Server 2008 R2 SP1. I would like some help to figure this out. I know that the computer is wrong but, I don't know have to intergrate the user. I will be using the SAMname. The information is from a month back. I am not sure how long AD keeps that information.
$UserProperty = @{n="User";e={(New-Object System.Security.Principal.
$_.ReplacementStrings[1]).
$TypeProperty = @{n="Action";e={if($_.Even
$TimeProeprty = @{n="Time";e={$_.TimeGener
Get-EventLog System -Source Microsoft-Windows-Winlogon
Thanks for your help.
$UserProperty = @{n="User";e={(New-Object System.Security.Principal.
$_.ReplacementStrings[1]).
$TypeProperty = @{n="Action";e={if($_.Even
$TimeProeprty = @{n="Time";e={$_.TimeGener
Get-EventLog System -Source Microsoft-Windows-Winlogon
Thanks for your help.
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 3 Comments.
Learn from the best
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 3 Comments.
Try for 7 days”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.