What is the Purpose of the Security Event Log?

by Barry Dysert
(last updated March 27, 2017)

There are several types of event logs maintained by the Windows operating system. One of these is the Security event log. Windows writes to this log when auditing is turned on. Writing to the Security log is reserved for Windows only. Other applications cannot write into this particular event log.

Like events written to other event logs, some of the important elements written to the Security log include the date and time when the event occurred, the event ID, and the event source. It's also important to note the Keywords in this log since they indicate what type of audit message the event represents (i.e., "Audit Success" or "Audit Failure"). (See Figure 1.)

Figure 1. Partial display of the Security event log.

Events can be viewed by using the Event Viewer, and by default they are presented in reverse chronological order (i.e., the most recent event is on top). You can, however, sort the events by any of the event columns by clicking the column header.

This tip (12923) applies to Windows 7, 8, and 10.

Author Bio

Barry Dysert

Barry has been a computer professional for over 35 years, working in different positions such as technical team leader, project manager, and software developer. He is currently a software engineer with an emphasis on developing custom applications under Microsoft Windows. When not working with Windows or writing Tips, Barry is an amateur writer. His first non-fiction book is titled "A Chronological Commentary of Revelation." Learn more about Barry...

MORE FROM BARRY

Enabling Libraries in File Explorer

Windows 7 introduced us to libraries, but they're turned off in Windows 10. Here's how to get them back.

Discover More

Scanning Pictures with a Scanner

If all you have is a hardcopy picture, you can still digitize it by using a scanner. This tip gives a high-level ...

Discover More

Displaying Hidden and System Files in a Folder

Files (and folders) can be marked hidden so that you don't see them in Windows Explorer. This tip tells you how to ...

Discover More

More WindowsTips

Tracking Down Who Installed or Removed a Program or App

Managing a computer system can often involve a good deal of detective work. This tip looks at how you can use your ...

Discover More

Changing How Event Log Overruns are Handled

By default, the event logs are implemented in a circular buffer, i.e., when its maximum size is reached, the oldest ...

Discover More

Using the Event Viewer to Examine Remote Event Logs

Assuming you have proper access to remote computers, you can examine their event logs from your system without much ...

Discover More

FREE SERVICE: Get tips like this every week in WindowsTips, a free productivity newsletter. Enter your address and click "Subscribe."

View most recent newsletter.

Comments

If you would like to add an image to your comment (not an avatar, but an image to help in making the point of your comment), include the characters [{fig}] in your comment text. You’ll be prompted to upload your image when you submit the comment. Maximum image size is 6Mpixels. Images larger than 600px wide or 1000px tall will be reduced. Up to three images may be included in a comment. All images are subject to review. Commenting privileges may be curtailed if inappropriate images are posted.

Notify me about new comments ONLY FOR THIS TIP

Notify me about new comments ANYWHERE ON THIS SITE

Hide my email address

What is 7 + 1?

There are currently no comments for this tip. (Be the first to leave your comment—just use the simple form above!)

Newest Tips

FREE SERVICE: Get tips like this every week in WindowsTips, a free productivity newsletter. Enter your address and click "Subscribe."

(Your e-mail address is not shared with anyone, ever.)

View the most recent newsletter.

What is the Purpose of the Security Event Log?

Author Bio

MORE FROM BARRY

More WindowsTips

Subscribe

Comments

Newest Tips

Subscribe

Links and Sharing

OUR COMPANY

OUR PRODUCTS

OUR AUTHORS

OUR SITES