Solved

Event Viewer tool

Posted on 2013-01-23
8
680 Views
Last Modified: 2013-02-18
Hello ,

I need a Microsoft tool to extract the Event log contents .. I need to filter the object type from the description of the Success audits for DNS audits.

Looking a tool from Microsoft .
0
Comment
Question by:Premkumar Yogeswaran
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
8 Comments
 
LVL 10

Expert Comment

by:Korbus
ID: 38808917
Just right click the log, and save it.  
Or do you mean that you need this done programatically?
0
 
LVL 17

Author Comment

by:Premkumar Yogeswaran
ID: 38808932
Yes saving does not give me the Description in Windows 2003 R2
0
 
LVL 23

Accepted Solution

by:
ComputerTechie earned 200 total points
ID: 38813940
0
Turn your laptop into a mobile console!

The CV211 Laptop USB Console Adapter provides a direct Laptop-to-Computer connection for fast and easy remote desktop access with no software to install.

 
LVL 22

Expert Comment

by:65td
ID: 38814770
Microsoft also has an intersting tool called LogPaser that meet your needs.
http://www.microsoft.com/en-ca/download/details.aspx?id=24659
0
 
LVL 3

Assisted Solution

by:jeorge
jeorge earned 150 total points
ID: 38818186
Hi Microsoft has the event tool by the name of Event viewer.

http://technet.microsoft.com/en-us/library/cc722404.aspx

http://support.microsoft.com/kb/308427

http://support.microsoft.com/kb/308427

You can search the tool on google. Once the tool is downloaded you can typr in at the run command-> eventvwr and the tool will be ready to use.

Since you are going to use Microsoft event viewer tool i would love to tell you some drawbacks that microsoft tool have.

You cannot scheulede reports from the native MIcrosoft event viewer.
You cannot create alerts , complaince reports etc. from the microsoft tool.

For instance, Hippa , SOX, PCI are the  most common used today for daily transcation. Microsoft event viewer tool generally overwrite the all the log one after the other which in turns face little difficulty while complaincing the report.

Few years back i too have to use this and i tried Microsoft tool but since these problem i faced i switched to a another third party tool.

You too can test out the tool and if you face the same as I, I can recommend you the tool i tested after this.

Update back to the community for the same.
0
 
LVL 22

Assisted Solution

by:Paka
Paka earned 150 total points
ID: 38821064
The native event viewer should work for this.  I ran a test on one of my W2003R2 servers and it does export the Description field:

1/23/2013      10:24:57 PM      MsiInstaller      Information      None      11707      ROUTER-01\Administrator      ROUTER-01      Product: Microsoft Network Monitor: NetworkMonitor Parsers 3.4 -- Installation completed successfully.

To export:
Right-click the log you want to export
Select Save Log File as...
Type a file name
Select either Tab or CSV format as the type

Description will be the 9th column.

Here's an example of of one of my DNS logs exported:
5/31/2012      9:08:55 PM      DNS      Warning      None      4521      N/A      PT-E2A636BDEDE9      The DNS server encountered error 32 attempting to load zone 1.1.30.in-addr.arpa from Active Directory. The DNS server will attempt to load this zone again on the next timeout cycle. This can be caused by high Active Directory load and may be a transient condition.
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question