Get-WdacBidTrace
Retrieves Built-in Diagnostics Tracing (BidTrace) for troubleshooting WDAC components.
Syntax
Get-WdacBidTrace
[[-Path] <String>]
[-AsJob]
[-CimSession <CimSession>]
[-Platform <String>]
[-ProcessId <UInt32>]
[-ThrottleLimit <Int32>] Get-WdacBidTrace
[-AsJob]
[-CimSession <CimSession>]
[-Platform <String>]
[-ThrottleLimit <Int32>]
-Folder <String> Get-WdacBidTrace
[-AsJob]
[-CimSession <CimSession>]
[-Platform <String>]
[-ThrottleLimit <Int32>]
[-IncludeAllApplications] Description
The Get-WdacBidTrace retrieves a list of BidTrace setting for different applications.
For more information about data access tracing (Bidtrace), see Data Access Tracing (Windows 8)http://msdn.microsoft.com/en-us/library/hh829624(VS.85).aspx.
Examples
1:
C:\PS>Get-WdacBidTraceGet all BidTrace settings for both 32-bit and 64-bit platform:
2:
C:\PS>Get-WdacBidTrace -Path "C:\temp\abc.exe" -Platform 32-bitGets the BidTrace setting for the application "C:\temp\abc.exe" and the specific settings for all of its process instances on the 32-bit platform:
3:
C:\PS>Get-WdacBidTrace -Path "C:\temp\abc.exe" -ProcessId 1234 -Platform 64-bitGets the BidTrace setting for the application "C:\temp\abc.exe" with Process ID = 1234 on the 64-bit platform:
4:
C:\PS>Get-WdacBidTrace -Path "C:\*\abc.exe" -Platform 64-bitGets the BidTrace setting for the application matching the wildcard pattern "C:*\abc.exe" on the 64-bit platform:
5:
C:\PS>Get-WdacBidTrace -Folder "C:\temp" -Platform 32-bitGets the BidTrace setting for the application located inside "C:\temp" on the 32-bit platform:
6:
C:\PS>Get-WdacBidTrace -Folder "C:\t*mp" -Platform 32-bitGets the BidTrace setting for the application located inside a folder matching the wildcard pattern "C:\t*mp" on the 32-bit platform:
7:
C:\PS>Get-WdacBidTrace -IncludeAllApplications -Platform 32-bitGets the BidTrace setting (applied to all 32-bit applications) on the computer:
8:
C:\PS>$bidArray = Get-WdacBidTraceSave the result into a PowerShell variable:
Parameters
-AsJob
ps_cimcommon_asjob
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-CimSession
Runs the cmdlet in a remote session or on a remote computer. Enter a computer name or a session object, such as the output of a New-CimSessionhttp://go.microsoft.com/fwlink/p/?LinkId=227967 or Get-CimSessionhttp://go.microsoft.com/fwlink/p/?LinkId=227966 cmdlet. The default is the current session on the local computer.
| Type: | CimSession |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Folder
Gets only WDAC BidTrace settings that are associated with the specified folder. You can use wildcard characters.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | True |
-IncludeAllApplications
Gets only WDAC BidTrace settings that are associated with 'all applications'.
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-Path
Gets only WDAC BidTrace settings that are associated with the specified application full path. You can use wildcard characters. The default is to return all WDAC BidTrace settings.
| Type: | String |
| Position: | 1 |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | True |
-Platform
The platform architecture of the WDAC BidTrace setting. Possible values are '32-bit', '64-bit' or 'All'. The default is 'All'. This is the platform architecture on the remote machine if this command is executed on a remote CIM session.
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-ProcessId
Gets only WDAC BidTrace settings that are associated with the specified Process ID. The parameter ProcessId is optional. The default is to return all WDAC BidTrace settings.
| Type: | UInt32 |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-ThrottleLimit
Specifies the maximum number of concurrent operations that can be established to run the cmdlet.
If this parameter is omitted or a value of 0 is entered, then Windows PowerShell® calculates an optimum throttle limit for the cmdlet based on the number of CIM cmdlets that are running on the computer.
The throttle limit applies only to the current cmdlet, not to the session or to the computer.
| Type: | Int32 |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Outputs
Related Links
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for