Windows PowerShell command on Get-command Clear-EventLog
MyWebUniversity

Windows PowerShell command on Get-command Clear-EventLog

NAME

    Clear-EventLog

    

SYNOPSIS

    Clears all entries from specified event logs on the local or remote computers.
    
    

SYNTAX

    Clear-EventLog [-LogName]  [[-ComputerName] ] [-Confirm] [-WhatIf] []

    
    

DESCRIPTION

    The Clear-EventLog cmdlet removes all of the entries from the specified event logs on the local computer or on 

    remote computers. To use Clear-EventLog , you must be a member of the Administrators group on the affected 

    computer.
    
    The cmdlets that contain the EventLog noun (the EventLog cmdlets) work only on classic event logs. To get events 
    from logs that use the Windows Event Log technology in Windows Vista and later versions of Windows, use the 

    Get-WinEvent cmdlet.

    


PARAMETERS

    -ComputerName 

        Specifies a remote computer. The default is the local computer.
        
        Type the NetBIOS name, an Internet Protocol (IP) address, or a fully qualified domain name of a remote 
        computer. To specify the local computer, type the computer name, a dot (.), or localhost.
        

        This parameter does not rely on Windows PowerShell remoting. You can use the ComputerName parameter of the 

        Get-EventLog cmdlet even if your computer is not configured to run remote commands.

        
        Required?                    false
        Position?                    1
        Default value                None

        Accept pipeline input?       True (ByPropertyName)

        Accept wildcard characters?  false
        

    -Confirm []

        Prompts you for confirmation before running the cmdlet.
        
        Required?                    false
        Position?                    named
        Default value                False
        Accept pipeline input?       False
        Accept wildcard characters?  false
        

    -LogName 

        Specifies the event logs. Enter the log name (the value of the Log property; not the LogDisplayName) of one or 

        more event logs, separated by commas.
        
        Required?                    true
        Position?                    0
        Default value                None

        Accept pipeline input?       True (ByPropertyName)

        Accept wildcard characters?  false
        

    -WhatIf []

        Shows what would happen if the cmdlet runs. The cmdlet is not run.
        
        Required?                    false
        Position?                    named
        Default value                False
        Accept pipeline input?       False
        Accept wildcard characters?  false
        
    
        This cmdlet supports the common parameters: Verbose, Debug,
        ErrorAction, ErrorVariable, WarningAction, WarningVariable,
        OutBuffer, PipelineVariable, and OutVariable. For more information, see 
        about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216). 
    

INPUTS

    None
        You cannot pipe objects to this cmdlet.
    
    

OUTPUTS

    None
        This cmdlet does not generate any output.
    
    

NOTES

    
    

        To use Clear-EventLog * on Windows Vista and later versions of Windows, start Windows PowerShell with the "Run 

        as administrator" option.
        

        *

    

    Example 1: Clear specific event log types from the local computer

    

    PS C:\>Clear-EventLog "Windows PowerShell"

    
    This command clears the entries from the Windows PowerShell event log on the local computer.

    Example 2: Clear specific multiple log types from the local and remote computers

    

    PS C:\>Clear-EventLog -LogName "ODiag", "OSession" -ComputerName "localhost", "Server02"

    
    This command clears all of the entries in the Microsoft Office Diagnostics (ODiag) and Microsoft Office Sessions 
    (OSession) logs on the local computer and the Server02 remote computer.

    Example 3: Clear all logs on the specified computers then display the event log list

    

    PS C:\>function Clear-All-Event-Logs ($ComputerName="localhost")

    {

       $Logs = Get-EventLog -ComputerName $ComputerName -List | ForEach {$_.Log}

       $Logs | ForEach {Clear-EventLog -Comp $ComputerName -Log $_ }

       Get-EventLog -ComputerName $ComputerName -List

    }
    

    PS C:\>Clear-All-Event-Logs -Comp "Server01"

    
    Max(K) Retain OverflowAction        Entries Log

    ------ ------ --------------        ------- ---

    15,168      0 OverwriteAsNeeded           0 Application
    15,168      0 OverwriteAsNeeded           0 DFS Replication
    512         7 OverwriteOlder              0 DxStudio
    20,480      0 OverwriteAsNeeded           0 Hardware Events
    512         7 OverwriteOlder              0 Internet Explorer
    20,480      0 OverwriteAsNeeded           0 Key Management Service
    16,384      0 OverwriteAsNeeded           0 Microsoft Office Diagnostics
    16,384      0 OverwriteAsNeeded           0 Microsoft Office Sessions
    30,016      0 OverwriteAsNeeded           1 Security
    15,168      0 OverwriteAsNeeded           2 System
    15,360      0 OverwriteAsNeeded           0 Windows PowerShell
    
    This example clears all event logs on the specified computers and then displays the resulting event log list.
    
    Notice that a few entries were added to the System and Security logs after the logs were cleared but before they 
    were displayed.
    

RELATED LINKS

    Online Version: http://go.microsoft.com/fwlink/?LinkId=821568

    Get-EventLog 

    Limit-EventLog 

    New-EventLog 

    Remove-EventLog 

    Show-EventLog 

    Write-EventLog


Contact us      |      About us      |      Term of use      |       Copyright © 2000-2019 OurUNIX.com ™