Ping a Specific Port

Question

Spirited Warrior

Asked: 2021-03-12 08:08:59 +0800 CST2021-03-12 08:08:59 +0800 CST 2021-03-12 08:08:59 +0800 CST

Determining users of Windows Servers

772

The Security Event Log logs all types of "logon events" - Interactive, batch, service, remote-network. This is one way of getting to the bottom of who logged on to a server.

Then there's the profile folders under C:\Users

What else can be used in order to make the determination as to which user accounts are "using" a particular Windows server (whether remotely or interactively)?

Thanks

1 Answers

Voted

joeqwerty · Answer 1 · 2021-03-12T09:41:42+08:00

joeqwerty

2021-03-12T09:41:42+08:002021-03-12T09:41:42+08:00

You can look for Logon Type 2 (local interactive) or 10 (remote interactive) in the event log, or you can look at the list of user profiles in Advanced system settings. Either one should get you the info you're loooking for.

https://docs.microsoft.com/en-us/windows-server/identity/securing-privileged-access/reference-tools-logon-types

0

Determining users of Windows Servers

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?