Finding Human Logins in the Windows Event Viewer – Suppressing Everything Else

nbeam published 10 years ago in Microsoft, Network Security, Windows Administration. Tags: exclude based on account name, exclude based on user name, exclude logs in event viewer, Filter Event Viewer Logs, XML event viewer log filtering

Windows Event Viewer is a gold mind of security information. However to find the nuggets you often have to chip away all of the useless “rock”. I was recently tasked with finding all of the “human” logins into a particular server in our environment for a given time period. To complicate matters, there are several […]

Search

Categories

Finding Human Logins in the Windows Event Viewer – Suppressing Everything Else