?
Solved

logs of computer

Posted on 2015-01-11
8
Medium Priority
?
91 Views
Last Modified: 2015-01-27
if we change so many settings change for one computer , can we get an history or log file , showing all changes done

like change internet setting , registry........by log file mentioning time and change

any tool
0
Comment
Question by:techp
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
  • +1
8 Comments
 
LVL 79

Expert Comment

by:arnold
ID: 40543740
Is this in an AD or standalone/home system.

Auditing GPO in ad, local security policy.
0
 
LVL 56

Expert Comment

by:McKnife
ID: 40543785
No, this is not possible. Auditing will not record what changes have been made, at least not in detail.
So you will have to manage your settings centrally (by GPOs) and do the documentation inside those GPOs (there are many text fields where you can insert details on why and how).
0
 

Author Comment

by:techp
ID: 40543862
it is in AD , as standalone computer
 some tools are to drag all reports from computer , all history ......
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
LVL 56

Expert Comment

by:McKnife
ID: 40543866
techp, it is expected that an asker gives feedback. If he doesn't, the thread comes to a halt.
0
 
LVL 79

Expert Comment

by:arnold
ID: 40544426
Auditing will record an event that a change occurred it will not record what the change was.
I.e change in GPO x made by user y.

The event will be in a security eventlog which will either using event forwarding can be aggregated on a central windows 2008 or newer server, or if snmp is installed using evntcmd you could configure eventlog to snmptrap ........
0
 

Author Comment

by:techp
ID: 40544600
there may be some tools to grab all history of computer , ( what installed at what time) ,,,,,,,thats what i am looking for
0
 
LVL 79

Assisted Solution

by:arnold
arnold earned 450 total points
ID: 40544621
trying to cover each item in your request will take a,long time.
There are three main logs application, security, system

Build a VM. Virtualbox or vmware esx aerver both can be obtained for free from their respective sites.

Add the VM to the domain with a detailed auditing GPO, or configure the local group policy to audit

Then install an application and note the application event record.
Let windows update install and see the event in the system/application logs.
Modify the local policy, and you should see under security/application the audit event.
0
 
LVL 23

Accepted Solution

by:
Danny Child earned 1050 total points
ID: 40547769
There are various registry comparison programs, and also ones that track installations.
https://www.raymond.cc/blog/tracking-registry-and-files-changes-when-installing-software-in-windows/
and
https://www.raymond.cc/blog/monitor-software-installs-remove-leftovers-install-monitor/

but I don't think any of them will tell you what TIME the change occurred at.

What problem are you trying to solve?  Monitor unapproved software installs?  Track build images?  Build system logs?
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I use more than 1 computer in my office for various reasons. Multiple keyboards and mice take up more than just extra space, they make working a little more complicated. Using one mouse and keyboard for all of my computers makes life easier. This co…
pc, laptop  monitor connection configurations
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question