CertCities.com -- The Ultimate Site for Certified IT Professionals
Visit CertCities.com Forums and Ost Your Mind Share share | bookmark | e-mail
  Microsoft®
  Cisco®
  Security
  Oracle®
  A+/Network+"
  Linux/Unix
  More Certs
  Newsletters
  Salary Surveys
  Forums
  News
  Exam Reviews
  Tips
  Columns
  Features
  PopQuiz
  RSS Feeds
  Press Releases
  Contributors
  About Us
  Search
 

Advanced Search
  Free Newsletter
  Sign-up for the #1 Weekly IT
Certification News
and Advice.
Subscribe to CertCities.com Free Weekly E-mail Newsletter
CertCities.com

See What's New on
Redmondmag.com!

Cover Story: IE8: Behind the 8 Ball

Tech-Ed: Let's (Third) Party!

A Secure Leap into the Cloud

Windows Mobile's New Moves

SQL Speed Secrets

CertCities.com
Let us know what you
think! E-mail us at:
 
 
...Home ... Editorial ... Columns ..Column Story Saturday: April 5, 2014


Tip o'the Week  
Zubair Alexander
Zubair Alexander
Configuring a Central Event Collector Computer
How can I collect events from various Windows Vista computers to a central event collector computer?
by Zubair Alexander  
4/16/2008 -- You can use the new event-forwarding feature in Vista to forward events from multiple Vista computers to one central collector computer. Here's the procedure.

Assuming the computers are part of the domain and you have administrative access to all the computers -- both source and destination -- you need to configure event subscriptions in the Event Viewer. I recommend using the domain administrator account.

First of all you need to configure the Windows Remote Management service. This service was first shipped in Windows Server 2003 R2 and has been enhanced in Vista.

  1. On the collector computer, as well as on all the source computers, go to the command prompt and type "winrm quickconfig" (without the quotes). Type Y and press enter to configure the service. You'll notice that it configures the Windows Remote Management service, creates a WinRM listenter and enables WinRM firewall exception, if necessary.
  2. On the collector computer, configure the Windows Event Collector service by typing "WECutil QC" (again, without quotes) at the command prompt. Click Y to configure the service. "QC" stands for "quick config." You can type wecutil /? to see other options.
  3. Add the collector computer's computer account to the local Administrators group on all the source computers.
  4. On the collector computer, start Event Viewer and click on the Subscriptions node.
  5. Right-click Subscriptions and click Create Subscription. If Windows Event Collector service isn't running on the computer, you'll be prompted to configure and start the service. Select Yes.
  6. Type a name for the subscription.
  7. Click Add to add the source Vista computers whose events you want to collect.
  8. Click Select Events and choose the options you want.
  9. Click the Advanced button and, under User Account, select Specific User. Enter the credentials for the user.
  10. Click OK a couple of times to finish creating your subscription.

You have now configured your central collector computer to accept forwarded events from other Vista computers.
Zubair Alexander, MCSE, MCT, MCSA and Microsoft MVP is the founder of SeattlePro Enterprises, an IT training and consulting business. His experience covers a wide range of spectrum: trainer, consultant, systems administrator, security architect, network engineer, author, technical editor, college instructor and public speaker. Zubair holds more than 25 technical certifications and Bachelor of Science degrees in Aeronautics & Astronautics Engineering, Mathematics and Computer Information Systems. His Web site, www.techgalaxy.net, is dedicated to technical resources for IT professionals. Zubair may be reached at .
 

More articles by Zubair Alexander:

-- advertisement --


There is 1 CertCities.com user Comments for “Configuring a Central Event Collector Computer”
Page 1 of 1
6/5/12: Ammiratore from XesSHhugeMrq says: Hey Chris, will you have an artbook of snkaes at your store ? I buy it the minuit he is online. btw. the prints i bought looking good on my wall. Thanks and greetz from Belgium.
Your comment about: “Configuring a Central Event Collector Computer”
Name: (optional)
Location: (optional)
E-mail Address: (optional)
Comment:
   

-- advertisement (story continued below) --

top
Home | Microsoft® | Cisco® | Oracle® | A+/Network+" | Linux/Unix | MOS | Security | List of Certs
Advertise | Contact Us | Contributors | Features | Forums | News | Pop Quiz | Tips | Press Releases | RSS Feeds RSS Feeds from CertCities.com
Search | Site Map | Redmond Media Group | TechMentor Conferences | Tech Library Webcasts
This Web site is not sponsored by, endorsed by or affiliated with Cisco Systems, Inc., Microsoft Corp., Oracle Corp., The Computing Technology Industry Association, Linus Torvolds, or any other certification or technology vendor. CiscoÆ and Cisco SystemsÆ are registered trademarks of Cisco Systems, Inc. Microsoft, Windows and Windows NT are either registered trademarks or trademarks of Microsoft Corp. OracleÆ is a registered trademark of Oracle Corp. A+Æ, i-Net+T, Network+T, and Server+T are trademarks and registered trademarks of The Computing Technology Industry Association. (CompTIA). LinuxT is a registered trademark of Linus Torvalds. All other trademarks belong to their respective owners.
Reprints allowed with written permission from the publisher. For more information, e-mail
Application Development Trends | Campus Technology | CertCities.com | The Data Warehousing Institute
E-Gov | EduHound | ENTmag.com | Enterprise Systems | Federal Computer Week | FTPOnline.com | Government Health IT
IT Compliance Institute | MCPmag.com | Recharger | Redmond Developer News | Redmond | Redmond Events | Redmond Channel Partner | Redmond Report
TCPmag.com | T.H.E. Journal | Virtualization Review | Visual Studio Magazine | VSLive!
Copyright 1996-2009 1105 Media, Inc. See our Privacy Policy.
1105 Redmond Media Group