IT tutorials
 
Technology
 

Windows Server 2012 : Using Event Viewer for Logging and Debugging (part 5) - Conducting Additional Event Viewer Management Tasks - Customizing the Event Log

12/31/2013 1:59:01 AM
- Free product key for windows 10
- Free Product Key for Microsoft office 365
- Malwarebytes Premium 3.7.1 Serial Keys (LifeTime) 2019
2.5 Customizing the Event Log

The properties of an event log can be configured. In Event Viewer, the properties of a log are defined by general characteristics: log path, current size, date created, when last modified or accessed, maximum size, and what should be done when the maximum log size is reached.

To customize the event log, access the properties of the particular log by highlighting the log and selecting Action and then Properties. Alternatively, you can right-click the log and select Properties to display the General tab of the log’s property page, as shown in Figure 3.

Image

Figure 3. Selecting properties for the event log.

The Log Size section specifies the maximum size of the log and the subsequent actions to take when the maximum log size limit is reached. The three options are as follows:

• Overwrite Events as Needed (Oldest Events First)

• Archive the Log When Full, Do Not Overwrite Events

• Do Not Overwrite Events (Clear Logs Manually)

If you select the Do Not Overwrite Events option, Windows Server 2012 stops logging events when the log is full. Although Windows Server 2012 notifies you when the log is full, you need to monitor the log and manually clear the log periodically so that new events can be tracked and stored in the log file.

In addition, log file sizes must be specified in multiples of 64KB. If a value is not in multiples of 64KB, Event Viewer automatically sets the log file size to a multiple of 64KB.

When you need to clear the event log, click the Clear Log button in the lower right of the property page.

Understanding the Security Log

Effectively logging an accurate and wide range of security events in Event Viewer requires an understanding of auditing in Windows Server 2012. It is important to know events are not audited by default. You can enable auditing in the local security policy for a local server, the domain controller security policy for a domain controller machine, and the Active Directory (AD) Group Policy object (GPO) for a domain. Through auditing, you can track Windows Server 2012 security events. It is possible to request that an audit entry be written to the security event log whenever certain actions are carried out or an object such as a file or printer in AD is accessed. The audit entry shows the action carried out, the user responsible for the action, and the date and time of the action.
 
Others
 
- Windows Server 2012 : Using Event Viewer for Logging and Debugging (part 4) - Conducting Additional Event Viewer Management Tasks - Organizing Data, Archiving Events
- Windows Server 2012 : Using Event Viewer for Logging and Debugging (part 3) - Examining the Event Viewer User Interface - Configuring Event Subscriptions
- Windows Server 2012 : Using Event Viewer for Logging and Debugging (part 2) - Examining the Event Viewer User Interface - The Custom Views Folder
- Windows Server 2012 : Using Event Viewer for Logging and Debugging (part 1)
- Exchange Server 2013 : Public folders (part 7) - Removing a public folder, Organizational forms library
- Exchange Server 2013 : Public folders (part 6) - Moving public folders, Redirecting content
- Exchange Server 2013 : Public folders (part 5) - Mail-enabling public folders
- Exchange Server 2013 : Public folders (part 4) - Creating public folders
- Exchange Server 2013 : Public folders (part 3) - Controlling the root
- Exchange Server 2013 : Public folders (part 2) - How many public folder mailboxes are needed?
 
 
Top 10
 
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 2) - Wireframes,Legends
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 1) - Swimlanes
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Formatting and sizing lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Adding shapes to lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Sizing containers
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 3) - The Other Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 2) - The Data Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 1) - The Format Properties of a Control
- Microsoft Access 2010 : Form Properties and Why Should You Use Them - Working with the Properties Window
- Microsoft Visio 2013 : Using the Organization Chart Wizard with new data
Technology FAQ
- Is possible to just to use a wireless router to extend wireless access to wireless access points?
- Ruby - Insert Struct to MySql
- how to find my Symantec pcAnywhere serial number
- About direct X / Open GL issue
- How to determine eclipse version?
- What SAN cert Exchange 2010 for UM, OA?
- How do I populate a SQL Express table from Excel file?
- code for express check out with Paypal.
- Problem with Templated User Control
- ShellExecute SW_HIDE
programming4us programming4us