<div>
Manually, you can navigate to any event log, right-click and do a &quot;Save All Events As.&quot; &nbsp;Your Save As options are:<br />
<br />
1. evtx<br />
2. xml<br />
3. txt<br />
4. csv<br />
<br />
Or are you looking for a script?<br />
<br />
Dan
</div>


<div>
If you are looking for events with specific event IDs or from a specific source, you can go to the appropriate event log and use the &quot;Filter Current Log&quot; function to select the desired events. &nbsp;After finding the desired info, use the &quot;Save Filtered Log File As&quot; function to drop those events into files types mentioned above.<br />
<br />
Dan
</div>


<div>
Well I need script for this, if have been trying to use wevtutil &nbsp;and netsh, but not found a way to dump the NPS events.
</div>


<div>
Have you tried using the plain old Event Viewer? &nbsp;My posts above are based on using it.<br />
<br />
Are you comfortable with PowerShell?<br />
<br />
Dan
</div>


<div>
Yes, but I need to schedule the running of the event dump. PS is ok. I have done this for long time in Windows 2003 but I cant find out how to do this in Windows 2012R2 and I only need the logs for the NPS
</div>


<div>
OK, so a litte more info is needed:<br />
<br />
1. the scheduled task is run how often?<br />
2. what timeframe should be in the output file? &nbsp;last 24 hours, last 12h, or all...<br />
3. what event ids or what event source are you looking for?<br />
--- I understand NPS events, but since you've done it before it would be helpful to now exactly what you pulled<br />
4. CSV format?<br />
<br />
Dan
</div>


<div>
Don´t worry about the schedule, I just need wevtutil &nbsp;and netsh command syntax to dump the NPS events to text file, no matter what format (.cvs,.txt)<br />
I have never dumps NPS events in Server 2003, this is the first time I try to dump them.<br />
On the 2003 server I was dumping other events.
</div>


<div>
Have you enabled NPS logging?<br />
<br />
Link: <a href="http://msdn.microsoft.com/en-us/library/cc730677.aspx" rel="ugc">http://msdn.microsoft.com/en-us/library/cc730677.aspx</a><br />
<br />
If so, it logs to a text located, by default, at: &nbsp;systemroot \System32\LogFiles. &nbsp;You can configure this log to rotate on the regular basis. &nbsp;See above link.<br />
<br />
Here is the netsh nps command reference: &nbsp;<a href="http://technet.microsoft.com/en-us/library/cc754758(v=ws.10).aspx" rel="ugc">http://technet.microsoft.com/en-us/library/cc754758(v=ws.10).aspx</a><br />
<br />
Here is the wevtutil command reference: &nbsp;<a href="http://technet.microsoft.com/de-de/library/cc732848(v=ws.10).aspx" rel="ugc nofollow">http://technet.microsoft.com/de-de/library/cc732848(v=ws.10).aspx</a><br />
<br />
Dan
</div>


<div>
The NPS logging does not log anything, I prefer to use the event viewer logs.<br />
<br />
I have checked out both aobove links before, As I said, I need the syntax for netsh or wevtutil to dump the event viwer NPS
</div>


<div>
Humm , not undestandig this error,<br />
<b><br />
C:\Netuse&gt;wevtutil qe NpsQuery.xml /sq:true /f:text<br />
Failed to open event query. The specified xml text was not well-formed. See Extended Error for more details.<br />
</b>
</div>


<div>
Error is from the way the xml file content was saved. &nbsp;I'll guess you used Notepad to save the file. &nbsp;I suggest that you use another text editor like Notepad++ or Programmer's notepad, either of these text editors will save the file properly.<br />
<br />
Dan
</div>


<div>
Now I have tried to save the text with EditPlus and Notepad++ but get the same error<br />
<br />
When I try to import to Custom View I get the error &quot;<b>The specified custom view is not valid.</b>&quot;
</div>


<div>
It is working now. I replaced the double quote with double quote.
</div>


<div>
<div class="content wysiwyg-content">
How can I dump the events or logs for &quot;Network Policy and Access Services&quot; to a text file ?
</div>
</div>


How can I dump the events or logs for "Network Policy and Access Services" to a text file ?

Dump NPS logs

Windows Server 2012 is the server version of Windows 8 and the successor to Windows Server 2008 R2. Windows Server 2012 is the first version of Windows Server to have no support for Itanium-based computers since Windows NT 4.0. Windows Server 2012, now in its second release (Windows Server 2012 Release 2) includes Foundation, Essentials, Standard and Datacenter, and does not support IA-32 or IA-64 processors.

Windows Server 2012

The Microsoft Server topic includes all of the legacy versions of the operating system, including the Windows NT 3.1, NT 3.5, NT 4.0 and Windows 2000 and Windows Home Server versions.