Jump to content
Posted 02 September 2017 - 10:08 AM
Posted 03 September 2017 - 01:04 PM
Have you added the computer account of the collector server to the event log readers group on the Windows 10 machine? You added the local network service, but you also need to add the collector computer to that group. https://technet.microsoft.com/en-us/library/cc748890
Posted 04 September 2017 - 07:38 PM
Great suggestion! Still nothing... seems like Win 10 security is blocking something somewhere.
Posted 05 September 2017 - 05:27 PM
Are you just trying to email when an event is triggered in event viewer?
I do all this by a batch file and then use Task Scheduler to trigger it to execute the batch file and then email me the results.
When an authentication fails on the RAS (VPN)
del %TMP%\VPN_Failure.txt wevtutil qe Security "/q:*[System [(EventID=6273)]]" /f:text /rd:true /c:1 > %TMP%\VPN_Failure.txt
Then create an email event that attaches the VPN_Failure.txt.
IS this what you are looking for because you dont need software for that when its all included in Windows.
EDIT: Sorry read it wrong lol.
Edited by JohnnyJammer, 05 September 2017 - 05:30 PM.
0 members, 0 guests, 0 anonymous users