You are not logged in. [Log In] KiXtart.org website » Forums » KiXtart » COM Scripting » Event Log Collation
Register User       Forum List       Calendar       FAQ
Page 1 of 1 1
Topic Options
#90657 - 2002-12-24 03:25 PM Event Log Collation
Stevie Offline
Starting to like KiXtart
*****

Registered: 2002-01-09
Posts: 199
The situation:

As part of a startup script that saves Security log files to a central location and then deletes them off the local machine (each week), the problem arises that 52 log files are created per machine every year.

What we would like to do is collapse the set of log files for each machine into 1 log file. However, in doing some preliminary research I can't find a good way to do this.

Any ideas?
_________________________
Stevie

Top
#90658 - 2002-12-24 03:49 PM Re: Event Log Collation
Bonji Offline
Starting to like KiXtart

Registered: 2001-09-28
Posts: 169
Loc: Virginia
The only method I know of without buying a program to do this is to output the event files to a .txt or .csv format. Then use the following command in a DOS window...

COPY LOG1.txt + LOG2.txt + LOG3.txt + LOG4.txt FinalLog.txt

The .txt files are not readable by the Event viewer so this may not be desirable. I'm also not sure how much information is lost in this transition. To make this KiX friendly use SHELL [Wink] .

-Ben
http://www.rgcweb.org/kix
Top
#90659 - 2002-12-27 01:16 AM Re: Event Log Collation
Stevie Offline
Starting to like KiXtart
*****

Registered: 2002-01-09
Posts: 199
I was hoping to make it accessible via Event Viewer.

The only way I can think to do it is to manually parse out each entry and add it to an existing log file. Not very palatable.
_________________________
Stevie

Top
#90660 - 2002-12-27 01:25 AM Re: Event Log Collation
Les Offline
KiX Master
*****

Registered: 2001-06-11
Posts: 12734
Loc: fortfrances.on.ca
I don't see any benefit of keeping the security logs in a format readable with Event Viewer. It would be far better to collate them into an SQL table and then use SQL queries.

There are commercial system like http://www.gfisoftware.com/lanselm that may be of interest.
_________________________
Give a man a fish and he will be back for more. Slap him with a fish and he will go away forever.

Top
#90661 - 2002-12-31 05:29 PM Re: Event Log Collation
Sealeopard Offline
KiX Master
*****

Registered: 2001-04-25
Posts: 11165
Loc: Boston, MA, USA
You could also do it the KiXtart way with the ReadEventlog() and DBConnOpen(), DBExecuteSQL(), DBConnclose() UDFs. This could all run from a central server reading eventlogs remotely.
_________________________
There are two types of vessels, submarines and targets.

Top
Page 1 of 1 1


Moderator:  Shawn, ShaneEP, Ruud van Velsen, Arend_, Jochen, Radimus, Glenn Barnas, Allen, Mart 
Hop to:
Shout Box

Who's Online
0 registered and 811 anonymous users online.
details
Newest Members
batdk82, StuTheCoder, M_Moore, BeeEm, min_seow
17885 Registered Users
My Cookies · Mark all read Powered by UBB.threads™ Contact Us · KiXtart.org website · Top

Generated in 0.127 seconds in which 0.099 seconds were spent on a total of 12 queries. Zlib compression enabled.
Search the board with:
superb Board Search
or try with google:
Google
Web kixtart.org