AuditWizard - Analysis Tools - Run a Trace
From Layton Support
(Difference between revisions)
m (Clarified procedure) |
(Clarified procedure) |
||
Line 2: | Line 2: | ||
This procedure will run the Scanner in logging mode, producing a log file useful for debugging why individual computers do not produce a usable .ADF audit file. | This procedure will run the Scanner in logging mode, producing a log file useful for debugging why individual computers do not produce a usable .ADF audit file. | ||
− | #In | + | #In Administration > Auditing > Upload Options, check ''Globally turn off auto-upload''. |
− | #In | + | #In Administration > Auditing > Scanner Configuration, change ''Re-audit Interval'' to 0 days. |
#Click the ''Save Configuration'' button and the ''Deploy to Network'' button. | #Click the ''Save Configuration'' button and the ''Deploy to Network'' button. | ||
#Log into the test computer as a domain admin. | #Log into the test computer as a domain admin. | ||
− | # | + | #Go to Start > Settings > Control Panel > Folder Options. Click the View tab. Change the following settings: |
##Files and Folders > Hidden files and folders: ''Show hidden files and folders'' | ##Files and Folders > Hidden files and folders: ''Show hidden files and folders'' | ||
##Files and Folders > Hide extensions for known file types: ''uncheck'' | ##Files and Folders > Hide extensions for known file types: ''uncheck'' | ||
− | ##Click the | + | ##Click the Apply button, then OK. |
− | + | ||
#Open Task Manager so that you can monitor when the Scanner stops running. | #Open Task Manager so that you can monitor when the Scanner stops running. | ||
− | #Go to | + | #Go to Start > Run. Enter<p><code>\\SERVERNAME\AUDITWIZARDNETSHARE\scanner\AuditScanner.exe T</code></p><p>and press the Enter key.</p> |
+ | #A dialog will appear:<br /><br /><p>''AuditScanner<br />Scan32 is running in diagnostic trace mode<br />Messages will be written to<br />C:\Users\YOURUSERNAME\AppData\Local\Temp\AuditScanner.LOG''<br /><br />Click the OK button to initiate the trace.</p> | ||
#When ''AuditScanner.exe'' disappears from Task Manager, it has completed and quit. | #When ''AuditScanner.exe'' disappears from Task Manager, it has completed and quit. | ||
− | #Navigate to C:\Users\YOURUSERNAME\AppData\Local\Temp\. | + | #Navigate to C:\Users\YOURUSERNAME\AppData\Local\Temp\. Move ''AuditScanner.LOG'' to \\SERVERNAME\AUDITWIZARDNETSHARE\data\ for easy collection. |
#Navigate to \\SERVERNAME\AUDITWIZARDNETSHARE\data\. | #Navigate to \\SERVERNAME\AUDITWIZARDNETSHARE\data\. | ||
#Collect the following set of files: | #Collect the following set of files: | ||
##NAME.adf | ##NAME.adf | ||
##Log from step 7. | ##Log from step 7. | ||
− | #In | + | #In Administration > Auditing > Upload Options, uncheck ''Globally turn off auto-upload''. |
Zip the files and send to '''[mailto:[email protected] Support]''' for analysis. | Zip the files and send to '''[mailto:[email protected] Support]''' for analysis. | ||
<p align="right">[[File:btn_back_up.png|link=User Guide for AuditWizard]] [[User Guide for AuditWizard|<u>Back to Contents</u>]]</p> | <p align="right">[[File:btn_back_up.png|link=User Guide for AuditWizard]] [[User Guide for AuditWizard|<u>Back to Contents</u>]]</p> |
Revision as of 04:35, 1 September 2015
This procedure will run the Scanner in logging mode, producing a log file useful for debugging why individual computers do not produce a usable .ADF audit file.
- In Administration > Auditing > Upload Options, check Globally turn off auto-upload.
- In Administration > Auditing > Scanner Configuration, change Re-audit Interval to 0 days.
- Click the Save Configuration button and the Deploy to Network button.
- Log into the test computer as a domain admin.
- Go to Start > Settings > Control Panel > Folder Options. Click the View tab. Change the following settings:
- Files and Folders > Hidden files and folders: Show hidden files and folders
- Files and Folders > Hide extensions for known file types: uncheck
- Click the Apply button, then OK.
- Open Task Manager so that you can monitor when the Scanner stops running.
- Go to Start > Run. Enter
\\SERVERNAME\AUDITWIZARDNETSHARE\scanner\AuditScanner.exe T
and press the Enter key.
- A dialog will appear:
AuditScanner
Scan32 is running in diagnostic trace mode
Messages will be written to
C:\Users\YOURUSERNAME\AppData\Local\Temp\AuditScanner.LOG
Click the OK button to initiate the trace. - When AuditScanner.exe disappears from Task Manager, it has completed and quit.
- Navigate to C:\Users\YOURUSERNAME\AppData\Local\Temp\. Move AuditScanner.LOG to \\SERVERNAME\AUDITWIZARDNETSHARE\data\ for easy collection.
- Navigate to \\SERVERNAME\AUDITWIZARDNETSHARE\data\.
- Collect the following set of files:
- NAME.adf
- Log from step 7.
- In Administration > Auditing > Upload Options, uncheck Globally turn off auto-upload.
Zip the files and send to Support for analysis.