KixTart: LOGEVENT
LOGEVENT (type, ID, message, target, source)
Examples:
$=LogEvent(4, 1, “This is just a user-defined event”, “”, “CustomEvent”)
$=LogEvent(1, 1, “Login script failed on client @wksta”, @LSERVER, “KixTart”)
Limitations: You can only write to the Application log.
Advantages: You can invoke this without having elevated permissions. You can submit events to remote computers (if permissions allow)
Windows Vista/7: EVENTCREATE
EVENTCREATE [/S system [/U username [/P [password]]]] /ID eventid
[/L logname] [/SO srcname] /T type /D description
Examples:
EVENTCREATE /T ERROR /ID 100 /L APPLICATION /D "This is just a user-defined event"
EVENTCREATE /S Server123 /T ERROR /L APPLICATION /D “This is a custom event”
Limitations: It must be invoked with administrative permissions. It requires the command shell, which is minimal overhead.
Advantages: Can write to all of the event logs (System, Application, etc.). It can write to local and remote event logs (if permissions allow)
VBScript: LOGEVENT
object.LogEvent(intType, strMessage [,strTarget])
Examples:
Set objShell = CreateObject(“Wscript.Shell”)
cn = objShell.ExpandEnvironmentStrings(“%computername%”)
objShell.LogEvent 1, “This is a custom ERROR message”
objShell.LogEvent 1, “Error on computer “ & cn, “MyServer”
Limitations: It can only write to the Application log
Advantages: Compared to the other options available: none.
PowerShell: WriteEntry
$evtLog = New-Object –type System.Diagnostics.Eventlog –argumentlist Application
$evtLog.Source = “Custom Event”
$evtLog.WriteEntry(“This is a custom Error even”, “Error”)
$evtLog = New-Object –type System.Diagnostics.Eventlog –argumentlist Application, MyServer
$evtLog.Source = $cn
$evtLog.WriteEntry(“Error occurred on $cn”, “Error”)
No comments:
Post a Comment