Enabling historic log collection | Online help - EventLog Analyzer

Enabling historic log collection in EventLog Analyzer

EventLog Analyzer collects all the logs present in the Windows Event Viewer (i.e., Windows Logs > Application, Security, System) when the historic log collection option is enabled.

To enable historic log collection, follow the steps below: 
  1. Navigate to Settings > Admin Settings > Product Settings > Enable Historic Log Collection.
    1. If EventLog Analyzer is down for a few days, the application collects all the logs from the Event Viewer when the server is restored, provided historic log collection is enabled.
    2. For agent-based log collection, the agent will collect all the logs available in the Event Viewer after the server is back online by default. 
  2. Navigate to Settings > Configuration > Manage Devices > Add Devices. Select the device, click the icon on the right to enable historic log collection, and click Add


Note: When you add a device to EventLog Analyzer for the first time and enable historic log collection, EventLog Analyzer collects all the logs available in the Event Viewer for the device.



      New to M365 Manager Plus?
      New to M365 Manager Plus?
        New to RecoveryManager Plus?
        New to RecoveryManager Plus?
          New to Exchange Reporter Plus?
          New to Exchange Reporter Plus?
            New to SharePoint Manager Plus?
            New to SharePoint Manager Plus?
                See all integrations
                New to ADManager Plus?
                See all integrations
                New to ADManager Plus?

                  New to ADSelfService Plus?

                  Start your free trial
                  Start your free trial

                    • Related Articles

                    • How to collect historic logs from Windows devices in EventLog Analyzer

                      Objective When a Windows device is onboarded in EventLog Analyzer, log collection starts from the moment of onboarding. To retrieve Windows event logs generated before the onboarding, you can use the following methods: Historic log collection: Can be ...

                    • How to configure log collection filters in EventLog Analyzer/Log360

                      Objective EventLog Analyzer offers log filtering capabilities, so that you can filter/remove/exclude unwanted events being collected or collect only the logs you actually need, by avoiding noisy events being collected. Filters let you include or ...

                    • How to perform offline log collection using the EventLog Analyzer agent

                      Objective When there is a intermittent connection or loss of communication between the agent and EventLog Analyzer server, the agent can perform offline log collection and store the logs to a data directory of a defined size. Once the connection is ...

                    • 'Log type' not visible in EventLog Analyzer reports

                      Objective To explain how to restore reports for a specific log type in EventLog Analyzer when the reports are missing due to the report view being disabled, even though logs are being collected successfully. Prerequisites EventLog Analyzer is ...

                    • Endpoint, Cloud or Log source deletion in EventLog Analyzer

                      Objective You may delete a device or application from EventLog Analyzer due to any of the following reasons: As the device or application auditing is no longer used or required for auditing Misconfigured the device with different log format. Device ...

                      Related Products