+ Post New Thread
Results 1 to 6 of 6
Windows Server 2000/2003 Thread, Tracking OWA Access in Technical; I know you can see who logged in via OWA in the security logs but i was wandering if there ...
  1. #1

    Join Date
    Jul 2009
    Location
    Wolverhampton
    Posts
    116
    Thank Post
    6
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Tracking OWA Access

    I know you can see who logged in via OWA in the security logs

    but i was wandering if there was anywhere else that tracks who logged in and records what machine they was on??

    In security logs it just puts the name of the server for the machine name

    Thanks

    Phil

  2. #2

    Join Date
    Oct 2009
    Location
    India
    Posts
    2
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Tracking OWA Access

    You can get all the informaion from IIS logs. For more information you can google "Using OWA logs to make your civil case"

    Actually it is difficult to manually go through log file to trace particular user account. I am also looking for a software which can parse IIS logs and give result in form of Report.

  3. #3

    Join Date
    Jul 2009
    Location
    Wolverhampton
    Posts
    116
    Thank Post
    6
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Quote Originally Posted by ChanderBatra View Post
    You can get all the informaion from IIS logs. For more information you can google "Using OWA logs to make your civil case"

    Actually it is difficult to manually go through log file to trace particular user account. I am also looking for a software which can parse IIS logs and give result in form of Report.
    is this what i need

    http://www.microsoft.com/technet/pro....mspx?mfr=true

  4. #4

    Join Date
    Oct 2009
    Location
    India
    Posts
    2
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Tracking OWA Access

    I am not sure about Microsoft log parser. I'll check if it can parse .log file i.e. IIS log file which can be found in %systemroot%\system32\LogFiles\W3SVC1 directory.
    I tried Managengine Event Log Analyzer to produce a report of IIS logs but that does not give desired output. I was known of some software which can scan text file (log file) for particular word and highlight all the lines in the text file having that word. Like in your case you can search for a user account name or LogonFrm.asp I have forgotten the name of that software. I'll search and let you know if I find something useful.

  5. #5

    Join Date
    Mar 2009
    Location
    Herefordshire
    Posts
    25
    Thank Post
    7
    Thanked 4 Times in 3 Posts
    Rep Power
    12
    Hmm interesting topic. Something like this could be reasonably easy to code. I recently made something which parsed some horribly obfuscated HTML from a UK haulage companies tracking system and returned the interesting bits of information as a PHP array.

    I may tackle something like this when I get some free time... if I do I'll keep you posted!

  6. #6

    Join Date
    Mar 2008
    Location
    Cape Town
    Posts
    112
    Thank Post
    8
    Thanked 14 Times in 14 Posts
    Rep Power
    16
    I was reading some articles on msexchange.org about something similar to this, using Microsoft's Log Parser. The articles are here and here



SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 9
    Last Post: 11th December 2009, 11:02 AM
  2. OWA Access 502 Bad Gateway Error
    By KWIK in forum Windows
    Replies: 3
    Last Post: 29th November 2007, 02:22 PM
  3. Replies: 2
    Last Post: 30th July 2007, 09:49 AM
  4. Restrict Access to OWA based on TIME
    By ICTNUT in forum How do you do....it?
    Replies: 4
    Last Post: 3rd June 2007, 07:37 PM
  5. Replies: 2
    Last Post: 31st May 2007, 05:15 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •