Are Your Event Logs Recoverable and Viewable?

Advanced Search

March 12, 2008 Are Your Event Logs Recoverable and Viewable? One means of ensuring successful event-log backups is to use WMI's Win32_NTEventLogFile class A Web Exclusive from Windows IT Pro Jim Turner Feature InstantDoc #98234 Windows IT Pro	Email this Article Printer Friendly Reader Comments Digg This Del.icio.us RSS
View this exclusive article with VIP access -- click here to join \| See More Backup and Recovery Articles Here \| Reprints \| Or sign up for our VIP Monthly Pass!

Untitled Document

Executive Summary:

Backing up event logs can be problematic because they're open and actively capturing and storing new events just about all of the time, even during backups. If you back up an active, changing file, you'll likely find that the backup file is corrupt and inaccessible. Fortunately, you can use the BackupEventLog method of the Windows Management Instrumentation's (WMI's) Win32_NTEventLogFile class to create recoverable and viewable copies of all your event logs. Here are two scripts that demonstrate how to use the BackupEventLog method.

. . .

You must log on before posting a comment.

If you don't have a username & password, please register now.

Learning Path For background information on how to use WMI monikers
"WMI Monikers"

"Constructing a Moniker String"

"WMI Security Settings"

For more information on how to use WMI's Win32_NTEventLogFile class
"Retrieving Event Log Properties"

"Backing Up and Clearing Event Logs"

"Win32_NTEventlogFile Class"

"BackupEventlog Method of the Win32_NTEventlogFile Class"

Top Viewed ArticlesView all articles

Command Prompt Tricks

One reader shares his tip for setting up the command prompt to reflect a remote path. ...

How can I stop and start services from the command line?

...

Where is Microsoft NetMeeting in Windows XP?

...

Related Articles The Event Log Query Utility

A Windows 2003 and XP Command-Line Tools Sampler

Security Changes in Windows Server 2003 WMI

Progressive Perl for Windows: Taking Advantage of the Windows Event Logs

Related Events Virtualization, Automation and Databases

Optimize your VMware Infrastructure with the New Releases from the Symantec Backup Exec Family

Virtualization Management

Check out our list of Free Email Newsletters!

Scripting eBooks Keeping Your Business Safe from Attack: Encryption and Certificate Services

Best Practices for Managing Linux and UNIX Servers

Building an Effective Reporting System

Related Scripting Resources Become a VIP member of the Windows IT Pro community!
Get it all with the VIP CD and VIP access. A $500+ value for only $279!

Subscribe to Windows IT Pro!
Solve your toughest technical problems with our experts and access 10,000 + articles online. 30% off

Monthly Online Pass - Only $5.95!
Get instant access to 10,000+ articles from Windows IT Pro Magazine!

TechNet Virtual Labs
Evaluate and test Microsoft's newest products.

ADS BY GOOGLE

Job Openings in IT		SPONSORED LINKS		FEATURED LINKS
		Register for Orion NPM v9 - Evaluation Affordable, easy-to-use network performance management with SolarWinds Orion – Free Trial! Want a Hardware-Independent Image? Binary Research, the Ghost people, shows you how to clone with 1! Maximize speed, performance and reliablity of your PCs and servers—automatically! Speed Up Your PC! Try Diskeeper 2008 with InvisiTasking Free Now! Order Your Fundamentals CD Today! Register today for your in-depth copy of one of three Fundamental CDs on the following topics – Exchange, SQL, and SharePoint.

Windows IT Pro Home

FAQ for Windows

WinInfo News
Europe Edition

About Us

Media Kit

Affiliates / Licensing

SQL Server Magazine

Office & SharePoint Pro

Windows Dev Pro

IT Job Hound

ITTV
IT Library

Technology Resource Directory

Connected Home

Windows Excavator

Windows SuperSite