Tag: capture
-
Monitoring your fleets event logs – Part 2
Install Splunk – It’s free! https://www.splunk.com/en_us/download/splunk-enterprise.html Modify Program Files\Splunk\etc\system\local\inputs.conf Add the lines [WinEventLog] evt_resolve_ad_obj = 1 Then we need to reboot splunk, in Splunk click Settings, then Server controls and click Restart Splunk Next we need to add our data source, click Add Data from the launch screen, then monitor Choose Local Events then ForwardedEvents and…
-
Optimize the ‘build and capture’ time and size (SCCM Build)
Inspired by Johan’s post http://www.deploymentresearch.com/Research/tabid/62/EntryId/174/Building-reference-images-like-a-boss.aspx I am probably one of the few that uses SCCM to capture base images. I use it because I create a thick image and it keeps the history of packages that it has installed meaning that newly imaged machines will know that they have already installed software x when…