Thursday, April 18, 2024
HomePowershellMonitor Native Person Logons on Home windows Working Techniques – SID-500.COM
Powershell

Monitor Native Person Logons on Home windows Working Techniques – SID-500.COM

superadmin
By superadmin
0
88


Home windows Server

Person Logons on Microsoft Home windows working techniques are referred to as Logon Occasions. On this quick weblog publish I’ll present you a PowerShell One-Liner which retrieves all person logons of a specific person.

PowerShell Code

Profitable person logons are logged with Occasion ID 4648. The code beneath rertrieves all profitable logon occasions of person patri. The output is formatted with the Format-Desk cmdlet for higher readability.

Get-EventLog -LogName Safety -InstanceId 4648 | 
The place-Object Message -match "patri" |
Format-Desk TimeGenerated,Message -AutoSize -Wrap

To be extra exact, and to keep away from in depth output, I prohibit the output to point out solely the final profitable login.

Get-EventLog -LogName Safety -InstanceId 4648 | 
The place-Object Message -match "patri" | 
Choose-Object -First 1 |
Format-Desk TimeGenerated,Message -AutoSize -Wrap

Have enjoyable monitoring your techniques with PowerShell!

Revealed by Patrick Gruenauer

Microsoft MVP on PowerShell [2018-2023], IT-Coach, IT-Advisor, MCSE: Cloud Platform and Infrastructure, Cisco Licensed Academy Teacher.

Previous articleNew Editor Settings, Actions on Save for New Tasks, and Internet Improvement options in GoLand 2023.1 EAP #6
Next articleResizing with CSS
superadmin
superadminhttps://thedevnews.com
RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Most Popular

Load more

Recent Comments

ABOUT US

Thedevnews is your web development website. We provide you with the latest breaking news and videos straight from the web development industry.

POPULAR POSTS

POPULAR CATEGORY

Copyright 2022© thedevnews.com. All rights reserved.