• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2050
  • Last Modified:

Filter security event logs to exclude event log description

I am using Windows Server 2008 R2 and setup auditing to generate event log when a file gets deleted.
 
For this I have setup a custom filter with name 'File Auditing', the problem is event log is capturing event wherein a deleting is generated when a user save a close word\excel file, this event log contain file name extension as temp file.
 
How to exclude event log which have the word 'temp' in event description.
 
I think we can achieve this by editing XML property of event log filtering.
0
Satish Auti
Asked:
Satish Auti
1 Solution
 
Sarang TinguriaSr EngineerCommented:
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now