• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2160
  • Last Modified:

Filter security event logs to exclude event log description

I am using Windows Server 2008 R2 and setup auditing to generate event log when a file gets deleted.
 
For this I have setup a custom filter with name 'File Auditing', the problem is event log is capturing event wherein a deleting is generated when a user save a close word\excel file, this event log contain file name extension as temp file.
 
How to exclude event log which have the word 'temp' in event description.
 
I think we can achieve this by editing XML property of event log filtering.
0
Satish Auti
Asked:
Satish Auti
1 Solution
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now