This PowerShell Module has multiple functionalities, but one of the signature features of this module is the ability to parse Security logs on Domain Controllers providing easy to use access to AD Events.
I tried to adapt PWinReportingV2 to query "ForwardedEvents" instead of "System" and "Security" by replacing all "LogName" variables. Unfortunately no results are found.
Does PSWinReportingV2 support Forwarded Events at all? I found out that 1.8 does but no information about V2. If yes could you please point me to the right direction?
Hi,
great work!
I'm using a loghost and forward all events: https://www.loggly.com/ultimate-guide/centralizing-windows-logs/
The Eventlogname is "ForwardedEvents".
I tried to adapt PWinReportingV2 to query "ForwardedEvents" instead of "System" and "Security" by replacing all "LogName" variables. Unfortunately no results are found.
Does PSWinReportingV2 support Forwarded Events at all? I found out that 1.8 does but no information about V2. If yes could you please point me to the right direction?
Thank you!