/build/static/layout/Breadcrumb_cap_w.png

Gather Windows Event logs with PowerShell

1. Create a text file

2. Paste the following command in:

Get-Eventlog -LogName application -EntryType Error,Warning | Export-csv application_logs.csv | Get-Eventlog -LogName System -EntryType Error,Warning | Export-Clixml system_logs.csv

3. Save this file as windows_event_logs_dumper.ps1

When this script is ran, it pulls all of the application and system event logs, where the -EntryType is warning or error. 

Going a step further, you could write a kscript that runs this script, then do a step to "Upload a file" which will upload those logs to the computer inventory for each machine the script is ran on.


Comments

This post is locked
 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ