Configure Event Logging for a Windows NT Token-Based Application
Applies To: Windows Server 2008
On a Web server that is running the Active Directory Federation Services (AD FS) Web Agent for Windows NT token–based applications, you can configure the types of events that you want to be logged for Windows NT token–based applications.
Note
Event logging is enabled differently for Windows NT token–based applications and claims-aware applications.
Use the following procedure to specify the types of events that you want to be logged for Windows NT token–based applications in the Application event log on the AD FS-enabled Web server. You set event logging for Windows NT token–based applications in the registry of the Web server.
Warning
Editing the registry incorrectly may damage your system severely. Before you make changes to the registry, back up any valued data on the computer.
Membership in Administrators, or equivalent, on the local computer is the minimum required to complete this procedure. Review details about using the appropriate accounts and group memberships at Local and Domain Default Groups (https://go.microsoft.com/fwlink/?LinkId=83477).
To configure event logging for Windows NT token–based applications
Open Regedit. Click Start, click Run, type regedit, and then click OK.
Navigate to:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ifssvc\ Parameters
Right-click Parameters, click New, and then click DWORD Value.
In the new value file name box, type the following, and then press Enter:
ADFSEvent
Double-click the new entry, and then, in Value data, provide a value for one of the following levels, or add values to configure multiple levels, and then click OK:
Warning: 0x01
Information: 0x02
Success: 0x04
Failure: 0x08