Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 10119 Source: WinRM

The WS-Management service is unable to start because of a failure during initialization. The error code is <error code>.
Microsoft released a "Update for Windows Server 2003 (ME968930)" at the end of October 2009 that includes the Windows Remote Management (WinRM) 2.0. If you get this event, then the installation may be corrupt and/or permissions on your server are incorrect. To fix this you have two options:
1. Remove > Goto Control Panel > Add/Remove Programs (tick)"Show Updates" >  "Windows Management Framework Core" = Remove.  May require a reboot.  If using WSUS you may need to unapprove otherwise it will re-detect & reinstall.
2. = Correct the permissions as per "IIS and Built-in Accounts (IIS 6.0)" - see the link below. A bit more involved but it corrects the problem. You'll need to either open either the GP Mgmt console (gpmc.msc) or the local Policy editor (gpedit.msc).  Navigate to the policy in which the server is located and delve into Computer Configuration > Windows Settings > Security Settings > User Rights Assignment and define &/or add the NETWORK SERVICE account to the aforementioned policies.  If you are on a Domain Controller you the NETWORK SERVICE account is not part of the IIS_WPG group so you have to add it manually to the polices that the article mentions.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to



Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.