Question

Locked

Event Logs - Central Repository

By arunraju ·
We are having 6 Domain Controllers in our Organization.We have a specific issue with respect to Event Log collection in our Domain Controllers.
As you all might know, the maximum size for the combined event log is only 300 MB (including the Windows Domain Controllers)

On an average we get about 700000 events in the Security Event Logs once in every 4 days.
We then take a backup and then reset the event logs.

Two days ago the management demanded a report on the number of logins for a specific user for a specfic day.

We were unable to generate such a report as the event log only maintains last logon and logoff timestamp.

Is there a feasible solution to consolidate event logs and point them to a syslog server so that the same could be filtered and reports could be generated ?

This conversation is currently closed to new comments.

2 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Answers

Share your knowledge
Back to Networks Forum
2 total posts (Page 1 of 1)  

Related Discussions

Related Forums