Exists a means to look all the event-logs on a LAN for a specifc occasion?

Exists a means to look all the event-logs on a LAN for a specifc occasion?

0
servers
2019-05-06 22:52:33
Source Share
Answers: 2

You can relay the Windows event log occasions to a syslog web server making use of a device like the Eventlog to Syslog Service utility or a software program like EventLog Inspector.

0
2019-05-08 19:53:53
Source

You can look the occasion browse through remote equipments with PowerShell, making use of System.Diagnostics.EventLog. Thinking the occasion you're seeking remains in the System log ... 

# get a list of all server names, maybe from AD, we'll assume it's in a variable called $serverlist  
$eventIdToFind = "1234" # or whatever ID you're looking for
$logToSearch = "System"
foreach ($aServer in $serverlist) {  
  $theLog = New-Object System.Diagnostics.EventLog($logToSearch, $aServer)  
  $matchingEventList = $theLog.Entries | where { $_.EventId -eq $eventToFind }
  if ($null -ne $machingEventList -and $matchingEventList.Count -gt 0) {  
    "Event Found on $aServer" # or do something else with it here  
  }  
}
.
0
2019-05-08 13:29:05
Source

Related questions