MCITP BOOT CAMP

Back | home

8.3.3 Managing Audit Logs

You can track trends in Windows Server 2003 by archiving event logs and comparing logs from different

periods. Viewing trends can be used to determine resource use and to plan for growth. Windows Server

2003 also allows you to control the size of each audit log and to specify the action that Windows Server

2003 takes when the log becomes full. These can be configured in the

PROPERTIES

of each individual audit

log. To configure the settings for logs:

• Click on the

START

button to display the Start Menu

• Point to

ALL ROGRAMS

• Click on

ADMINISTRATIVE TOOLS

• Click on

EVENT VIEWER

• Right-click the Log you want to configure

• Select

PROPERTIES

from the pop-up menu

• Set the

MAXIMUM LOG SIZE

• Set the Action that should be taken when the log file become full

The default the maximum log size is 512 KB but you can set it to be from 64 KB to 4,194,240 KB (4 GB) in

size.

The action that you can specify for when a log file becomes full are:

• Overwrite Events As Needed. This setting requires no maintenance but you could lose information if

the log becomes full before you archive it.

• Overwrite Events Older Than [number] Days. This is the default setting. You must select the number

of days for this option; the default is seven. You could lose information if the log becomes full before

you archive it.

• Do Not Overwrite Events (Clear Log Manually). With this option no security log entries will be

overwritten therefore there will be no information loss. It however requires that you to clear the log

manually. When the log becomes full, Windows Server 2003 will stop.

Note: When the log file becomes full and you have specify the Do Not

Overwrite Events (Clear Log Manually) action, Windows Server 2003

stops. You can therefore use this configuration to ensure that Windows 2000

only operates while auditing occurs.

MCITP Boot Camp & CCNA boot camp back to back.

Why Vibrant

Course Fees

FAQ

Testimonial

Site map

MCSE Boot Camp

MCSE

MCSE Boot Camp India

RHCE Training

Mayank

Red Hat Certification

MCSE

Win2k3 Notes

Cisco Notes

Microsoft Notes

Links

MCSE Boot camp Certification

MCSE Certification Boot Camp

PASSING GUARANTEE

Vibrant acknowledges that success in a Boot Camp is the result of joint efforts of the student and the training provider. It is therefore not possible for a training provider to unilaterally guarantee success in a Boot Camp. Unless the student puts in the requisite efforts, success in a Boot Camp will be elusive.

Vibrant, however, guarantees to provide the environment, infrastructure and training methodology which will make success in the Boot Camp inevitable assuming the presence of corresponding efforts from the student.

Vibrant, therefore, provides passing guarantee with the following terms :

If you are not able to pass any (or all) of the exams, you can attend the course (or courses) again at Vibrant free-of-cost with the following conditions :

1-	You can attend classes in a scheduled Boot Camp listed on our website. The Boot Camp should have a seat available and should not have been cancelled due to nil registrations.
2-	You will have to pay the cost of Hotel stay, meals, air-fare, tests and any other third-party service. The courseware has to be carried back by you.
3-	The guarantee entitles you to attend only the course for which you have failed an exam. Other courses cannot be substituted in this guarantee.
4-	You are entitled to re-attend within one year of completion of the Boot Camp.
5-	Also if you fail an exam, the current Boot Camp will continue to run as scheduled and the retraining can be availed only after completion of the current Boot Camp.