Chapter 5 discussed features related to navigating through the many different data stores in a consistent way. PowerShell also provides the functionality to access the event logs. This chapter discusses the various cmdlets related to accessing and handling event logs. As you know, the behaviors of hardware, software, and users on your system are recorded as events in the Windows event logs. Therefore, the event logs provide very helpful insight into what is happening on your system. For example, if your SQL Server doesn't start automatically as expected, then the Application event log would be the first place you want to look to troubleshoot the problem. However, the large volume of information contained in the event logs can sometimes make it difficult to find the particular events you are interested in.

This chapter introduces you to the available event logs and the different types of information they contain. It also shows you how to sift through the information more effectively with Windows PowerShell.

This chapter covers the following topics: