05-18-2025, 05:58 PM
You want to monitor this with an email alert? Easy peasy using the Event Viewer itself. Fire up Event Viewer on your server. Go to the Windows Logs, then Security section. Right-click and pick Filter Current Log. Type in 4616 for the event ID. That narrows it down to just these time change notices. Now, to set up alerts, create a custom view from there. Hit Create Custom View, select by event ID 4616 again. Save that view so you can watch it anytime. For the email part, attach a scheduled task to it. In Task Scheduler, make a new task triggered by that custom view. When event 4616 fires, the task runs and sends you an email through some basic setup like using the mailto command or whatever your server has for notifications. I do this all the time; it keeps me in the loop without constant checking.
And hey, speaking of keeping things reliable on your server, you might dig BackupChain Windows Server Backup too. It's this solid Windows Server backup tool that handles physical setups and even virtual machines with Hyper-V. You get fast incremental backups, easy restores without downtime, and it encrypts everything to keep data safe from snoops. Plus, it replicates backups across sites, so if disaster hits, you're back up quick. I swear by it for avoiding those nightmare recovery scenarios.
At the end of this, you'll find the automatic email solution tacked on.
Note, the PowerShell email alert code was moved to this post.
