PowerShell one-liner: Get eventlog

Use PowerShell one-liner to get eventlog details quickly and easily. In this article you will find several useful examples which will help you in daily operational tasks. Get-Eventlog The Get-EventLog cmdlet actually serves two purposes: it enables you to manage your event logs, and it also enables you to get at the events contained within those event logs. To get lognames list we just have to use parameter -list : …

How to find events about software uninstallation?

Recently we noticed that some software has been uninstalled on our machines. To scan all servers I created simple PowerShell function which checks event in application log. To scan events we can use Get-EventLogcommand and specify event Id – in this case it should be 1034: Script will generate output with the following information: – Server – Date – User – Application – Version – Manufacturer – Source Usage: Output: …

Use PowerShell function to get reboot details remotely

In this article you will find useful function which will help you get reboot details from remote machines. Script use Get-WinEvent command to find reboot related log entries. Additionally it also check last reboot time and calculate it’s up time. Script will collect following information: – BootUpTime – UpTime – RebootDate – UserName – Action – Process – Reason Write-Host command has been used for displaying “UpTime” and “BootUpTime” values …

Scan event log to find if service was installed in the system

I recently had to scan system event log on all production servers to find out which services have been installed. In this article I will describe how to scan your infrastracture for this specific event. For selecting servers I used Out-GridView command: Please note that in Foreach loop you need to provide name for servers column in CSV file – in my case it was “Server name”: We have to …

Pull server name from ADFS eventlog and check LDAP connection

When it comes to ADFS, network connectivity to the global catalog servers is one of the most important aspects. You may often see in ADFS logs that LDAP server returned a specific error when it was queried or it’s even unresponsive. As an engineer you need to determine either its temporary network connectivity problem or maybe something wrong with one of your Domain Controllers. I also had this problem so …