How to view Windows Event Log remotely with limited rights

Question

How to view Windows Event Log remotely with limited rights

To debug some code, I would like to view the Windows event log on a remote computer (target Windows2003). With mmc.exe, I can add an event log for the remote machine, but only if I have sufficient permissions. For this remote computer, they do not want to give me permission to log into the system remotely (or administrator privileges, for that matter). Is there a specific permission that can be granted to view the event log, and not more?

+5

windows-server-2003 event-log

Frank schwieterman Jan 6 '09 at 18:11

source share

6 answers

.

+1

Colin Bowern 28 . '10 14:34

Marcus Erickson · Answer 1 · 2009-01-06T18:27:38+0000

For security log, users need the "Audit and Security Log Management" privilege

For system and application logs, you should be able to read them as a guest if they have not set the RestrictGuestAZccess value in the following registry keys: HKEY_LOCAL_MACHINE \ System \ CurrentControlSet \ Services \ EventLog \ System HKEY_LOCAL_MACHINE \ System \ CurrentControlSet \ Services \ EventLog \ Application

oefe · Answer 2 · 2016-06-08T17:12:00+0000

In new versions of Windows (Windows 7, Windows Server 2008 ...) you can simply add the corresponding account to the built-in group of event logs .

: Weblog TechNet, Windows 2003 Windows 2008

, .

(OP Windows 2003, , Windows Server 2003 , .)

user102015 · Answer 3 · 2009-05-06T07:31:29+0000

- , .

, , .

MMC Windows, MMC/a

EventView

- , .

. Windows - . , .

: WMI - , -.

Sunil Agarwal · Answer 4 · 2014-01-19T10:26:17+0000

( ) " " . .

Dscoduc · Answer 5 · 2009-01-06T18:19:34+0000

If you can enable web access to the server, you can use the event log page that I posted some time ago. This will allow administrators to run the website with sufficient permission to view the event log without providing you with an account to log in ...

How to view Windows Event Log remotely with limited rights

More articles: