SOTI Pulse Logo

Retrieve Windows Device/ System Logs

SOTI MobiControl
Windows

Windows device logs contain valuable records of system events and application activity, essential for diagnosing and troubleshooting device issues. The Retrieve Windows Device/System Logs script enables IT administrators to remotely collect detailed logs from Windows devices. This allows for efficient analysis of system behavior, helping identify errors, performance issues, or unusual activities. By accessing these logs remotely, administrators can streamline the troubleshooting process, resolve issues faster, and ensure the smooth operation of devices across the organization.

Important:
  • It is recommended to test the script on a local/ test machine for its purpose and effects. 
  • SOTI MobiControl will not be responsible for any damage/loss to the data/setup based on the behavior of the script.

Fetch only the error events

1 Get-EventLog -LogName System -EntryType Error -Newest <give number>

Fetch the latest five entries from the system event log

1 Get-EventLog -LogName System -Newest 5

Fetch event logs available on the windows device

1 Get-EventLog -List

Was this helpful?

Need more help?
Ask Community