Application and services log collection
EventLog Analyzer supports the collection of application and services logs from the Event Viewer. For example, to successfully collect PowerShell logs from Windows, you have to add a key inside the registry of the respective client machine from which you want to collect logs. You can do this by following these steps:
- Find and open regedit.msc.
- Navigate to HKEY_LOCAL_MACHINE > SYSTEM > CurrentControlSet > Services > EventLog.
- Create a new key called Windows PowerShell.
- Restart the EventLog Analyzer service after adding the key in the registry of the client machine.
EventLog Analyzer provides out-of-the-box reports for specific keys. You can refer to this
guide to set up these reports. For other keys, logs can still be collected with basic parsing capabilities. EventLog Analyzer can be configured to deliver custom reports for them.
New to ADSelfService Plus?