How to Automate Exchange Log Cleanup with PowerShell and Scheduled Tasks

First, you'll download a proven PowerShell script that safely removes old Exchange and IIS log files. We'll use the SammyKrosoft version because it includes features essential for automation like progress tracking and no-confirmation flags.

Open PowerShell as Administrator on your Exchange server and create a scripts directory:

New-Item -Path "C:\Scripts" -ItemType Directory -Force
Set-Location "C:\Scripts"

Download the script directly from GitHub:

Invoke-WebRequest -Uri "https://raw.githubusercontent.com/SammyKrosoft/Clean-Exchange-Log-Files/master/CleanExchangeLogFiles.ps1" -OutFile "CleanExchangeLogFiles.ps1"

Verify the script downloaded correctly:

Get-ChildItem "C:\Scripts\CleanExchangeLogFiles.ps1" | Select-Object Name, Length, LastWriteTime

Exchange servers often have restrictive PowerShell execution policies that prevent script execution. You need to configure the policy to allow signed scripts while maintaining security.

Check your current execution policy:

Get-ExecutionPolicy -List

Set the execution policy to RemoteSigned for the local machine scope:

Set-ExecutionPolicy -ExecutionPolicy RemoteSigned -Scope LocalMachine -Force

Verify the policy change:

Get-ExecutionPolicy -Scope LocalMachine

The output should show RemoteSigned. This policy allows locally created scripts to run while requiring downloaded scripts to be signed by a trusted publisher.

Before automating the cleanup process, test the script to see what files it would delete without actually removing them. This prevents accidental deletion of important logs.

Navigate to your scripts directory and run a test with the -DoNotDelete parameter:

Set-Location "C:\Scripts"
.\CleanExchangeLogFiles.ps1 -Days 7 -DoNotDelete

The script will scan for log files older than 7 days and display what would be deleted. You'll see output showing:

• IIS log files in C:\inetpub\logs\LogFiles
• Exchange logging files in your Exchange installation directory
• Total size of files that would be removed

Review the output carefully. If you see files you want to keep, adjust the -Days parameter. For example, to keep logs for 14 days:

.\CleanExchangeLogFiles.ps1 -Days 14 -DoNotDelete

Verify the script identifies the correct Exchange paths by checking one manually:

Get-ChildItem "$env:ExchangeInstallPath\Logging" -Recurse -Include *.log | Where-Object {$_.LastWriteTime -lt (Get-Date).AddDays(-7)} | Measure-Object -Property Length -Sum

Now run the script with actual deletion to ensure it works correctly before automation. This step confirms the script has proper permissions and can successfully remove old log files.

Execute the cleanup script with confirmation prompts:

.\CleanExchangeLogFiles.ps1 -Days 7

The script will prompt you to confirm deletion. Type Y and press Enter to proceed. Monitor the output for any error messages or access denied issues.

For a completely silent run (needed for scheduled tasks), use the -NoConfirmation parameter:

.\CleanExchangeLogFiles.ps1 -Days 7 -NoConfirmation

Verify the cleanup worked by checking disk space before and after:

# Check available disk space
Get-WmiObject -Class Win32_LogicalDisk | Where-Object {$_.DeviceID -eq "C:"} | Select-Object DeviceID, @{Name="FreeSpace(GB)";Expression={[math]::Round($_.FreeSpace/1GB,2)}}

Check that old log files were actually removed:

# Verify no log files older than 7 days remain
Get-ChildItem "C:\inetpub\logs\LogFiles" -Recurse -Include *.log | Where-Object {$_.LastWriteTime -lt (Get-Date).AddDays(-7)} | Measure-Object

Now you'll create a Windows scheduled task that runs the cleanup script automatically. This ensures consistent log management without manual intervention.

Open Task Scheduler as Administrator:

Start-Process taskschd.msc -Verb RunAs

In Task Scheduler, click Create Basic Task in the Actions panel. Configure the task with these settings:

• Name: Exchange Log Cleanup
• Description: Automatically removes Exchange and IIS log files older than 7 days

Set the trigger for daily execution:

• Trigger: Daily
• Start: 2:00 AM (off-peak hours)
• Recur every: 1 days

Configure the action to run PowerShell:

• Action: Start a program
• Program/script: powershell.exe
• Add arguments: -NoProfile -ExecutionPolicy Bypass -File "C:\Scripts\CleanExchangeLogFiles.ps1" -Days 7 -NoConfirmation
• Start in: C:\Scripts

The -NoProfile parameter speeds up execution by skipping user profile loading, while -ExecutionPolicy Bypass ensures the script runs even with restrictive policies.

Proper security configuration ensures the scheduled task runs with sufficient privileges while maintaining security best practices.

After creating the basic task, right-click it and select Properties. Navigate to the General tab and configure:

• Check Run whether user is logged on or not
• Check Run with highest privileges
• Configure for: Windows Server 2016 (or your server version)

For the user account, you have two options. Option 1 - Use a service account (recommended):

# Create a dedicated service account for the task
New-LocalUser -Name "ExchangeLogCleanup" -Description "Service account for Exchange log cleanup" -PasswordNeverExpires -UserMayNotChangePassword

Add this account to the local Administrators group:

Add-LocalGroupMember -Group "Administrators" -Member "ExchangeLogCleanup"

Option 2 - Use the built-in SYSTEM account by setting the user to NT AUTHORITY\SYSTEM in the task properties.

Configure additional settings on the Settings tab:

• Uncheck Stop the task if it runs longer than (or set to 1 hour)
• Check If the running task does not end when requested, force it to stop
• Set If the task fails, restart every: 15 minutes, up to 3 times

Before leaving the task to run automatically, test it manually to ensure it executes correctly in the scheduled environment.

Right-click your Exchange Log Cleanup task and select Run. The task should start immediately and show a status of Running.

Monitor the task execution in real-time:

# Check task status
Get-ScheduledTask -TaskName "Exchange Log Cleanup" | Get-ScheduledTaskInfo

Check the Task Scheduler event logs for execution details:

# View recent task scheduler events
Get-WinEvent -LogName "Microsoft-Windows-TaskScheduler/Operational" -MaxEvents 10 | Where-Object {$_.Message -like "*Exchange Log Cleanup*"} | Format-Table TimeCreated, LevelDisplayName, Message -Wrap

Verify the script actually ran by checking for newly created log entries or by running a quick disk space check:

# Check if cleanup occurred by looking for recent file deletions
Get-EventLog -LogName Application -Source "WSH" -Newest 5 -ErrorAction SilentlyContinue

If the task fails, check the Last Run Result code:

• 0x0: Success
• 0x1: General failure - check script path and permissions
• 0x2: File not found - verify script location
• 0x41301: Task is currently running

For detailed troubleshooting, enable task history by clicking Enable All Tasks History in the Task Scheduler Actions panel.

Implement monitoring to track the cleanup task's performance and catch any issues before they impact your Exchange server.

Create a simple logging mechanism by modifying your script execution. Create a wrapper script that logs results:

# Create a logging wrapper script
$LogFile = "C:\Scripts\ExchangeCleanupLog.txt"
$Timestamp = Get-Date -Format "yyyy-MM-dd HH:mm:ss"

try {
    $Output = & "C:\Scripts\CleanExchangeLogFiles.ps1" -Days 7 -NoConfirmation 2>&1
    Add-Content -Path $LogFile -Value "$Timestamp - SUCCESS: $Output"
} catch {
    Add-Content -Path $LogFile -Value "$Timestamp - ERROR: $($_.Exception.Message)"
}

Save this as C:\Scripts\ExchangeCleanupWrapper.ps1 and update your scheduled task to call this wrapper instead.

Set up a simple monitoring check using PowerShell:

# Create a monitoring script to check disk space and task status
$DiskSpace = Get-WmiObject -Class Win32_LogicalDisk | Where-Object {$_.DeviceID -eq "C:"}
$FreeSpaceGB = [math]::Round($DiskSpace.FreeSpace/1GB,2)
$TaskInfo = Get-ScheduledTask -TaskName "Exchange Log Cleanup" | Get-ScheduledTaskInfo

if ($FreeSpaceGB -lt 5) {
    Write-Warning "Low disk space detected: $FreeSpaceGB GB remaining"
}

if ($TaskInfo.LastTaskResult -ne 0) {
    Write-Warning "Last cleanup task failed with result code: $($TaskInfo.LastTaskResult)"
}

Configure Windows Event Log monitoring for critical events:

# Set up event log monitoring for disk space issues
wevtutil sl "Microsoft-Windows-Kernel-General/Analytic" /e:true

Verify your monitoring setup by checking the log file after the next scheduled run:

Get-Content "C:\Scripts\ExchangeCleanupLog.txt" -Tail 5