The Scwcmd analyze command in Windows

(Applies to: Windows Server 2012 R2, Windows Server 2012 )

The Scwcmd analyze command helps determine whether the computer is compliant with the policy.The result will be returned in the .xml file.The Scwcmd analyze command also accepts the list of computer names as input data.To see the results in your browser, use the scwcmd view and specify the% windir% securitymsscwTransformFilesscwanalysis.xsl address to transform .xsl.For a better understanding of how to use this command, refer to the example at the end of the article.

Syntax command Scwcmd analyze

 scwcmd analyze [[[/ m: | / ou:] / p:] | / i:] [/ o: 
 ] [/ u:] [/ pw:] [/ t:] [/ l] [/ e] 

Parameter command Scwcmd analyze

Parameters

Describe

/ m:

Specify the NetBIOS name, DNS name or IP address of the computer for analysis.If the / m parameter is specified, the / p parameter must also be specified according to.

/ ou:

Specify fully qualified domain name (FQDN) of an organizational unit (OU) in Active Directory Domain Services.

/ p:

If the / ou parameter is specified, the / p parameter must also be specified according to.All computers in the OU will be analyzed according to the policy created.

/ i:

Specify the path and name of the .xml file that contains the computer list along with their expected policy files.All computers in the .xml file will be analyzed based on their respective policy files.The sample .xml file will be% windir% securitySampleMachineList.xml.

/ o:

Specify the path and directory where the analysis result file is saved.The default will be the current directory.

/ u:

Specify an alternate user certificate to use when performing an analysis on the remote computer.By default, the user is logged in.

/ pw:

Specify an alternate user certificate to use when performing an analysis on the remote computer.Default is the password of the logged in user.

/ t:

Specify the number of concurrent outstanding analysis activities that need to be maintained during the analysis process (default value DefaultValue = 40, lowest value MinValue = 1, maximum value MaxValue = 1000).

/ l

Assign to record the analysis process.A log file will be created for each computer analyzed.Log files will be stored in the same folder as the result file.Use the / o option to specify the directory for the result file.

/ e

Log an event into the Application Event log if a nonconformity is found.

/?

Show help at thecommand prompt.

Note the command Scwcmd analyze

Scwcmd.exe will only be available on computers running Windows Server 2008 R2, Windows Server 2008 or Windows Server 2003.

Example of the Scwcmd analysis command

To analyze the security policy for webpolicy.xml file, enter:

 scwcmd analyze /p:webpolicy.xml 

To analyze the security policy on a computer with a web server name based on the webpolicy.xml file using the webadmin account login, enter:

 scwcmd analyze / m: webserver /p:webpolicy.xml / u: webadmin 

To analyze the security policy for webpolicy.xml file, with up to 100 strings and export the results to a file named resultserver in the share, enter:

 scwcmd analyze /i:webpolicy.xml / t: 100 / o: resultserverresults 

To analyze the security policy for WebServers OU for webpolicy.xml file using DomainAdmin login information, enter:

 scwcmd analyze / ou: OU = WebServers, DC = Marketing, DC = ABCCompany, DC = com /p:webpolicy.xml / u: DomainAdmin 

 

See more:

1. The best, fastest DNS list of Google, VNPT, FPT, Viettel, Singapore
2. Summary of shortcuts to know in Windows 10
3. Basic Linux commands everyone needs to know
4. Windows Server 2008 Domain Services - Part 1: Active Directory Domain Services