![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(70.4, 12%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
20,213 questions
Hello
To get the access log of a specific ID on Windows Server 2016, you can use the Event Viewer. The log files are stored in the C:\Windows\System32\winevt\logs folder. You can view these logs through the Event Viewer, which can be opened through the MMC, or through the Start menu by selecting All apps, Windows Administrative Tools, followed by Event Viewer.
Regarding the Get-UalServerUser command, I couldn’t find any specific information about this command. It seems like there might be a misunderstanding as the available commands are Get-UalServerDevice and Get-UalDailyUserAccess, which are used to get User Access Logging (UAL) records for client requests, by device, and by user for services on a server, respectively.
As for the Get-UalUserAccess command, it gets User Access Logging (UAL) records for client requests, by user, for services on a server. If you’re not getting any output from this command, it could be due to a variety of reasons. Here’s an example of how to use it:
Get-UalUserAccess -Username "domain\username"
This command gets the UAL records for a client user with a specified name. If you’re still not getting any output, it might be worth checking if the User Access Logging service is running. You can use the Get-Service UALSVC PowerShell cmdlet to retrieve information about the UAL Service including whether it is running or stopped and whether it is enabled or disabled.