Home > IT Answers > Windows Server > Clear Eventlog for a particular users
Kmaslam
0 pts.
 Clear Eventlog for a particular users
Active Directory, DHCP, DNS, Microsoft Windows
Hi there. I would like to know if it is possible to clear the security logs stored in the Windows 2000 Event Viewer for a particular user regardless of the audits which are enabled for that particular user. Please let me know whether this is really possible in a Windows 2000 Active Directory environment and if it is possible, how it could be accomplished. Thank you.

Software/Hardware used:
ASKED: October 28, 2004  5:25 PM
UPDATED: November 5, 2004  2:36 PM
RELATED QUESTIONS
Answer Wiki:
I would most probably save the current event log (Action, Save Log File As...) and then re-open that saved file in the viewer and perform a find (View, Find) the result will be based on the user or string for which you are searching.
Last Wiki Answer Submitted:  October 28, 2004  5:50 pm  by  Gwzill   0 pts.
All Answer Wiki Contributors:  Gwzill   0 pts.
To see all answers submitted to the Answer Wiki: View Answer History.


RSS - Discussions Help
Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

 

I understand that the log will be saved as .evt file and cna be used for customized querying. But I wanted to know whether the particular logs of the particular user can be deleted from the Event logger itself. Thanks.

Kmaslam
 0 pts.
 

Selective editing of log is NOT allowed. If you save the log (.evt) as a file you can edit however you want. If you were allowed to selectively edit the live logfile then it would no longer have any audit value.

Howard2nd
 30 pts.
 

Well, this answers my question. Thank you all for the help.

Kmaslam
 0 pts.