From the course: Learning System Center 2016 Endpoint Protection

Unlock this course with a free trial

Join today to access over 22,400 courses taught by industry experts.

Client logs and WMI queries

Client logs and WMI queries

- [Man] In this video, I'll discuss client logs and WMI queries. So we've got a couple of other ways that we can monitor endpoint protection in terms of its status on our protective clients, like SCCM in-console monitoring and Power Shell commandments. Let's dig a little bit deeper. Starting by talking about getting into client logs. All endpoint protection clients have logged information about detected malware as well as just the functioning of the anti malware client itself. So with Windows 10 and Server 2016, the location of the Endpoint Client Logs is under C, Program Data, Microsoft, Windows Defender, Support. On the Windows 7 side, you can see in a bit of a different location under C, Program Data, Microsoft, Microsoft Anti Malware, Support. Let's go take a look at where those log files are in both operating systems and let's take a look to see what's in the logs. Here in Windows 10, I've got a shortcut on the desktop that will take me straight into that support location that we…

Contents