1 / 13

Chapter 31 - Monitoring System Activities with Event Viewer

Chapter 31 - Monitoring System Activities with Event Viewer. The Three Event Logs. Application Security System All viewable in Event Viewer (in Computer Management). Home Edition.

samson-allison
Download Presentation

Chapter 31 - Monitoring System Activities with Event Viewer

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Chapter 31 - Monitoring System Activities with Event Viewer

  2. The Three Event Logs • Application • Security • System • All viewable in Event Viewer (in Computer Management)

  3. Home Edition • Event Viewer is the same in Home Edition as in Windows XP Professional, but only certain predefined events are recorded in the Security log

  4. Security Events • Security events are recorded in the Security log • Monitoring these events is called auditing and is and is not covered in this course

  5. Application Events • Application events are generated by applications, including programs that you install, programs that come with Windows XP, and operating system services. • For example, events relating to Microsoft Office, the backup program that comes with Windows XP, and the Windows XP Fax service are all recorded in Appevent.evt

  6. System Events • System events are generated by Windows XP itself and by installed components, such as device drivers. • If a driver fails to load when you start a Windows XP session, for example, that event is recorded in the System log.

  7. Three types of events: • Errors • Possible loss of data or functionality • Examples: A malfunctioning device, or a service that failed to load • Warnings • Less significant or less immediate problems than errors • Examples: a nearly full disk or a timeout by the network redirector

  8. Three types of events: • Information • Other events • Examples: someone using a printer connected to your computer, or a successful dial-up connection to your ISP

  9. To start Event Viewer • Right-click My Computer, Manage • Event ID • All events are identified by a numerical value • Use eventid.net

  10. Examining Event Details • Double-click the event. • Click the arrow buttons in the upper right corner of the properties dialog box to move to the previous or next event in the list.

  11. Searching for an Event • The Find command on Event Viewer’s View menu allows you to locate particular items in the current log

  12. Setting Log File Size and Longevity • Select the log in question in the console tree of Event Viewer, then click Action, Properties • By default, each log file has a maximum size of 512 KB • Also by default, events in each log file have a minimum longevity of seven days

  13. Help And Support Center • Click Start, Help And Support Center • Use Tools To View Your Computer Information And Diagnose Problems • Advanced System Information • View The Error Log • Merges the contentfrom all three logs, but shows only errors

More Related