Skip to content

Comments

Get-WinEvent#3

Open
MacsInSpace wants to merge 9 commits intoLockstepGroup:masterfrom
MacsInSpace:master
Open

Get-WinEvent#3
MacsInSpace wants to merge 9 commits intoLockstepGroup:masterfrom
MacsInSpace:master

Conversation

@MacsInSpace
Copy link

@MacsInSpace MacsInSpace commented Dec 14, 2022
edited
Loading

Updated and changed to use "Get-WinEvent"
Added extended filters. More descriptive than, for example, "ReplacementStrings[6]" in my opinion.
Removed old variable settings:


$LogonEvent=(Get-EventLog -LogName Security -InstanceId 4624 -After $30Days | Where {$_.ReplacementStrings[8] -eq $LogonType -and $_.ReplacementStrings[6] -ne "Window Manager"})[0]
$LoggedOnUser=($LogonEvent.ReplacementStrings[6])+'\'+($LogonEvent.ReplacementStrings[5])
$Date=$LogonEvent.TimeGenerated

@MacsInSpace
Get-WinEvent
ae7bc4d 
Change to Get-WinEvent<br>
Added extended filters<br><br>
Removed old variable settings:<br><br>
$LogonEvent=(Get-EventLog -LogName Security -InstanceId 4624 -After $30Days | Where {$_.ReplacementStrings[8] -eq $LogonType -and $_.ReplacementStrings[6] -ne "Window Manager"})[0]<br><br>
$LoggedOnUser=($LogonEvent.ReplacementStrings[6])+'\'+($LogonEvent.ReplacementStrings[5])<br><br>
$Date=$LogonEvent.TimeGenerated<br><br>
@MacsInSpace
Update Set-ComputerCustomAttributes.ps1
b347fde 
added URL
@MacsInSpace
Create ExtendCompiterSchema.ps1
f86861f 
Added PS to extend the schema. *Untested at 15/05/23*
@MacsInSpace
Rename ExtendCompiterSchema.ps1 to ExtendComputerSchema.ps1
daddb1e
@MacsInSpace
Update ExtendComputerSchema.ps1
1b5489d
@MacsInSpace
Update ExtendComputerSchema.ps1
7a4e479
@MacsInSpace
Update ExtendComputerSchema.ps1
01260d2
@MacsInSpace
Update ExtendComputerSchema.ps1
9244d0e
@MacsInSpace
Add files via upload
f85b506
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@MacsInSpace