![\"Photo](\"https:\/\/devblogs.microsoft.com\/wp-content\/uploads\/sites\/29\/2019\/02\/1754.wes-3-3-12-1.jpg\" "\\"Photo")
<\/a><\/p>\nI have been working at Microsoft since late 2008, during that time I have been an engineer within CSS, a SharePoint 2010 TAP, and most recently I have become a dedicated premier field engineer working with several of our premier customers to support their SharePoint infrastructure. I have been using Windows PowerShell for the last two years to simplify the administration and troubleshooting of SharePoint for my customers. I enjoy camping with my family and kite surfing in my spare time. (Yeah, right who has any of that…)<\/p>\n
Blog: Wondering Mind<\/a> (about issues with SharePoint and its supporting infrastructure)<\/p>\n Raise your hands if you recently tried to parse through your IIS logs to get an answer. Did you find it easy? Did you still have the correct log files? One of my customers recently brought this problem to me saying that they were not happy with any of the current methods and wondered if I could make something to work with Windows PowerShell.<\/p>\n They wanted to be able to remove IIS logs from their web front ends when they needed to and still maintain a long-term repository of this rich and valuable data. They had already centralized the IIS logs into one folder, which had the following structure of a parent folder for the repository and then a folder for each web application that contained files from the web front ends server.<\/p>\n With the file collection already solved for me, I started on the script. I realized there where a few things I would have to accomplish: <\/p>\n It all turned out to be a lot simpler than I thought it would be. I started off by writing functions to do the following: <\/p>\n This function uses the Smo.Database class<\/a> to get all the databases, and then it enumerates all the databases on SQL Server. It compares the database name to the one provided, and if it finds no match, I create the database. In either case, I return the database object.<\/p>\n function Create_Database<\/p>\n {<\/p>\n param($SQLSvr, [string]$DatabaseName, [string]$DBServer)<\/p>\n <\/p>\n foreach($db in $SQLSvr.Databases) # Check to see if our Database exists<\/p>\n {<\/p>\n if($db.Name -eq $DatabaseName)<\/p>\n {<\/p>\n return $db<\/p>\n }<\/p>\n }<\/p>\n $db = New-Object Microsoft.SqlServer.Management.Smo.Database($SQLSvr, $DatabaseName)<\/p>\n $db.Create()<\/p>\n return $db<\/p>\n }<\/p>\n By using the StringCollection<\/a> class, I add a SQL Create Table<\/a> statement to a string and then pass the string to my Execute Statements<\/b> function. In that statement, I follow the article 296085<\/a> in the Microsoft Knowledge Base to create all the correct columns. Be aware that if you want to change the type of IIS log that you use, you need to change the columns that you create.<\/p>\n function Create_Table<\/p>\n {<\/p>\n param($DB, [string]$TableName)<\/p>\n <\/p>\n $TableScript = New-Object -Type System.Collections.Specialized.StringCollection<\/p>\n $TableScript.Add(“CREATE TABLE [dbo].[$TableName] ([date] [datetime] NULL,[time] [datetime] NULL ,[s-sitename] [varchar] (255) NULL,[s-computername] [varchar] (255) NULL ,[s-ip] [varchar] (50) NULL ,[cs-method] [varchar] (50) NULL ,[cs-uri-stem] [varchar] (512) NULL ,[cs-uri-query] [varchar] (2048) NULL ,[s-port] [varchar] (255) NULL ,[cs-username] [varchar] (255) NULL ,[c-ip] [varchar] (255) NULL ,[cs-version] [varchar] (255) NULL ,[cs(User-Agent)] [varchar] (512) NULL ,[cs(Cookie)] [varchar] (4096) NULL ,[cs(Referer)] [varchar] (2048) NULL,[cs-host] [varchar] (255) NULL ,[sc-status] [int] NULL ,[sc-substatus] [varchar] (255) NULL,[sc-win32-status] [varchar] (255) NULL,[sc-bytes] [int] NULL ,[cs-bytes] [varchar] (255) NULL ,[time-taken] [int] NULL)”) | Out-Null<\/p>\n Database_ExecuteNonQuery_Command $DB $TableScript #Create Table<\/p>\n }<\/p>\n Executes any non-query statement that you provide it as a string through the ExecuteNonQuery<\/a> class. <\/p>\n Note<\/b> The statement cannot perform queries on the database like SELECT.<\/p>\n function Database_ExecuteNonQuery_Command<\/p>\n {<\/p>\n param($SQLDataBase, $CommandScript)<\/p>\n $Error.Clear()<\/p>\n $ExecutionType = [Microsoft.SqlServer.Management.Common.ExecutionTypes]::ContinueOnError<\/p>\n $SQLDataBase.ExecuteNonQuery($CommandScript, $ExecutionType)<\/p>\n <\/p>\n trap {Write-Host “[ERROR]: $_”; continue}<\/p>\n }<\/p>\n The IIS logs have headers and other lines that we do not want to import into the database. This function will get all the lines from the file by using Get-Content<\/a>. By using Select-String<\/a>, it removes any lines that contain a Regular Pattern, and then rewrites the file with all the good lines by using Set-Content<\/a>.<\/p>\n function Clean_Log_File<\/p>\n {<\/p>\n param ($LogFile)<\/p>\n $Content = Get-Content $LogFile.FullName | Select-String -Pattern “^#” -notmatch<\/p>\n Set-Content $LogFile.FullName $Content<\/p>\n }<\/p>\n $LineScript = New-Object -Type System.Collections.Specialized.StringCollection <\/p>\n $LineScript.Add(“BULK INSERT $Database.[dbo].[$TableName] FROM `”$File`” WITH (BATCHSIZE = 10,FIRSTROW = 1,FIELDTERMINATOR = ‘ ‘, ROWTERMINATOR = ‘\\n’)”) | Out-Null<\/p>\n Database_ExecuteNonQuery_Command $Database $LineScript<\/p>\n I rename the file with the .old extension, so I do not read the file more than once.<\/p>\n Rename-Item $File (($LogFile.FullName).TrimEnd($LogFile.extension) + “.old”) #Insure we don’t add contents of file to table again<\/p>\n Note<\/b> You need to run with elevated permissions to be able to write to the database. You can do this by typing runas<\/b> when you open Windows PowerShell, or read my blog post<\/a> about how to do this with Task Manager.<\/p>\n If everything works well, you should see the following in SQL Management Studio.<\/p>\n After the script finishes running, you will be able to run Select<\/b> statements and other SQL queries against your database to find information such as: <\/p>\n Watch for the next post when I will develop a script that automatically runs different reports from the information that we have collected.<\/p>\n ~Chris<\/p>\n Thanks Chris. This has been a great blog. The script can be found in the Script Repository<\/a>.<\/p>\n I invite you to follow me on Twitter<\/a> and Facebook<\/a>. If you have any questions, send email to me at scripter@microsoft.com<\/a>, or post your questions on the Official Scripting Guys Forum<\/a>. See you tomorrow. Until then, peace.<\/p>\n Ed Wilson, Microsoft Scripting Guy<\/strong> <\/p>\n","protected":false},"excerpt":{"rendered":" Summary: Guest blogger, Microsoft PFE Chris Weaver, shows how to use Windows PowerShell to collect, store, and parse IIS log data. Microsoft Scripting Guy, Ed Wilson, is here. Today we have back with us Chris Weaver. I have been working at Microsoft since late 2008, during that time I have been an engineer within CSS, […]<\/p>\n","protected":false},"author":596,"featured_media":87096,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[297,56,326,3,130,61,45],"class_list":["post-10971","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-scripting","tag-chris-weaver","tag-guest-blogger","tag-iis","tag-scripting-guy","tag-servers","tag-weekend-scripter","tag-windows-powershell"],"acf":[],"blog_post_summary":" Summary: Guest blogger, Microsoft PFE Chris Weaver, shows how to use Windows PowerShell to collect, store, and parse IIS log data. Microsoft Scripting Guy, Ed Wilson, is here. Today we have back with us Chris Weaver. I have been working at Microsoft since late 2008, during that time I have been an engineer within CSS, […]<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/posts\/10971","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/users\/596"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/comments?post=10971"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/posts\/10971\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/media\/87096"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/media?parent=10971"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/categories?post=10971"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/tags?post=10971"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}<\/a><\/p>\n\n
Create a database<\/h2>\n
Create a table<\/h2>\n
Execute statements<\/h2>\n
Clean the log files<\/h2>\n
Then I started on the main logic <\/h2>\n
\n
Rename the file<\/h2>\n
<\/a><\/p>\n\n