Merill Fernando

Principal Product Manager @ Microsoft Entra

less than 1 minute read

If you need to trawl through your production server event logs. Here’s a quick tip for extracting just the entries for a given date range using LogParser. BTW Visual LogParser is a must have, it even downloads and automatically installs the latest version of LogParer from MS.

SELECT  TimeGenerated, SourceName, ComputerName, Message FROM C:\Downloads\May09-ErrorLog\AppLog\*.evt
WHERE TimeGenerated BETWEEN timestamp('04/04/2009', 'dd/MM/yyyy') and timestamp('06/04/2009', 'dd/MM/yyyy')
ORDER BY TimeGenerated desc

You may also enjoy

Device filter > Device platform

less than 1 minute read

When designing a conditional access policy and have the choice between using device filter and device platform always use device filter.

What I use

less than 1 minute read

I’m frequently asked about the apps I use. So here’s a list for future reference so I can avoid repeating myself 😀