See failed logons in Windows 10
Yes it is possible. But first you have to enable it in your group policy.
- Press Win + R and enter
gpedit.msc
(folowed by pressing return) - Click through the following tree:
Computer Configuration → Windows Settings → Security Settings → Local Policies → Audit Policy
- On the right panel double-click Audit logon events
- Mark Success and Failure (if you want both to be logged)
- Confirm those settings by pressing the OK button
You can now find your Audit Failure and Success entries in your eventviewer:
- Press Win + R and enter
eventvwr
(followed by pressing return) - Open the Windows Logs Tree and click on Security
There you will find all entries.
You can also create a filter to only show your successful and failed logon attempts:
- On the eventviewer click on Filter Current Log...
- Change
<All event IDs>
to4624,4625
The eventID 4624
shows your successful attempts, thereas 4625
shows the failed ones.
Remember: you will only find those attempts being logged since you've changed the group policy! So you can't see it for the past.
Related videos on Youtube
H. Pauwelyn
I'm H. Pauwelyn, I'm working as software and web engineer at Savaco loving AI, robotics, new media, IoT, domotics, the cloud and Lego. The most common programming languages I use are C#, JavaScript, TypeScript and SQL.
Updated on September 18, 2022Comments
-
H. Pauwelyn almost 2 years
I understand that you can see failed logons in Windows 10 - how can I do that?
Also, can you filter that by failed or successful logins? This is for Windows 10, Home Edition.
-
H. Pauwelyn almost 9 yearsSorry, but he can't find gpedit.msc.
-
A1985 almost 9 yearsAh you are using the home version... There is no group policy editor included. However you can install it. You can find a how to on the following page: askvg.com/… Even though it's saying that it's for Windows 7 it should be working on Windows 10 too.
-
JW0914 almost 7 yearsIs Local Security Policy [
secpol.msc
] also not included in Home? If it is, Security Settings - Local Policies - Audit Policy