Analyze SCCM Client Logs Using CMPivot | ConfigMgr

0
Analyze SCCM Client Logs Using CMPivot ConfigMgr

Let’s learn how to analyze SCCM client logs using CMPivot. ConfigMgr Twitter community is doing a great work share many CMPivot queries. Learn more about CMPivot architecture and communication details as well. 👉SCCM CMPivot Architecture Fast Channel Making | ConfigMgr.

CMPivot query gives you the real-time value of these versions in your environment. Check out the following blog posts to find the details of Office 365 ProPlus out of support devices using the SQL query.

Launch CMPivot

You can launch the CMPivot tool from either the Admin console or the standalone CMPivot tool. Select the device collection you want and enter the query.

Analyze SCCM Client Logs Using CMPivot | ConfigMgr
Analyze SCCM Client Logs Using CMPivot | ConfigMgr

CMPivot Query to Analyze Client Logs

Let’s check a number of queries that can help you to analyze the SCCM client logs using the CMPivot query.

  • CcmLog() is the entity object that can be used to query and analyze the logs from the client.
  • As per Microsoft Docs, the CCMLog entity can analyze the Lines within 24 hours (by default) from a Ccm Log file.

Query WUAHandler Log

The following query might help you get the details of the successful completion of the software update scan through the WUAHandler.log file. You can use the same method to analyze the entries of various SCCM client-side logs.

The entry that I’m interested for WUA Handler log is Successfully completed scan. The CMPivot query helps to analyze the log files of all the Windows 10 devices and give us a list of devices.

CcmLog('WUAHandler') | where (LogText like '%Successfully completed scan%') | distinct Device
Analyze SCCM Client Logs Using CMPivot | ConfigMgr
Analyze SCCM Client Logs Using CMPivot | ConfigMgr

Script Log Analysis

Let’s try to check the options to perform analysis with script.log file. This is useful to get the list of devices with a particular text entry in the script.log file.

CcmLog('Scripts', 1d)
Analyze SCCM Client Logs Using CMPivot | ConfigMgr
Analyze SCCM Client Logs Using CMPivot | ConfigMgr
CcmLog('Scripts', 1d) | where (LogText like '%Running PS script…%')
Analyze SCCM Client Logs Using CMPivot | ConfigMgr
Analyze SCCM Client Logs Using CMPivot | ConfigMgr
CcmLog('Scripts', 1d) | where (LogText like '%Running PS script…%') | distinct Device
Analyze SCCM Client Logs Using CMPivot | ConfigMgr 1

Co-Existance Mode

Let’s find out the co-managed devices using CMPivot tool. More details about from Chris Buck.

ccmlog ('CCMSDKProvider') | where (LogText like '%Device is in coexistence mode%') | distinct Device

Scan Errors Using CMPivot

Let’s check out the CMPivot query shared by Matthew Hudson to analyze the updatesdeployment.log file and find out scan errors.

Ccmlog ('UpdatesDeployment') | where (LogText like '%0x87d00215%') | distinct Device

Resources

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.