|
Posted by Steve Harclerode on July 8, 2005, 3:17 pm
Please log in for more thread options For completeness sake...
I looked at the registry permissions for the keys you mentioned. They all
were set so that the Admin account could read them. However, all 3 logs had
a DWORD value called RestrictGuestAccess which was set to 1. You'd think
that would have kept me from looking at the Security log, but I was
definitely able to see it.
The entire mystery isn't solved, but as I mentioned in another post, the
problem is gone. Your earlier suggestion fixed it.
Thanks,
Steve
> Boy is that bizarre in that you can access the security log but not the
> application or system log. There is an outside chance that they are
> corrupt and clearing the logs may help but I would back them up first just
> in case there is anything important in those logs and you would be
> prompted to do such before you cleared them. The problem would not be
> network related if you can access the security log. The other things I
> would check is permissions to the .evt logs to make sure you do not have
> any deny permissions to them and that administrators/system have full
> control and the permissions on the registry keys for those logs which are
> located at
> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\application
> and ...system . --- Steve
>
>
>
>>I can access the Security log, but not the System or the Application log.
>>I'm a member of administrators, power users, remote desktop users, and
>>users.
>>
>> And yes, I'm logging on remotely with Terminal Services from Win2K box.
>>
>> I'll have to ask the admin guy Monday if he can access the Event Log.
>>
>> Thanks,
>> Steve
>>
>>> No that is not a common problem. Is this happening to everyone including
>>> the built in administrator account? Are you logging on locally or
>>> trying to do this remotely? The guests group can be denied access to the
>>> application log but it would be unusual for you to be a member of the
>>> gusts group but you should have your user account membership reviewed.
>>> The command net user username is an easy way to do such. Can you access
>>> any log - system or security for example? --- Steve
>>>
>>>
>>>> Hi,
>>>>
>>>> I'm trying to look at the Application event log on a Windows 2003
>>>> server using the Event Viewer. The account I'm using is a member of the
>>>> local admin group. I'm getting an error:
>>>>
>>>> Unable to complete the operation on "Application". Access is Denied".
>>>>
>>>> Is this a common problem? What could our administrator change to allow
>>>> me access to those logs?
>>>>
>>>> Thanks,
>>>> Steve
>>>>
>>>
>>>
>>
>>
>
>
| 
XML Sitemap