The provider file
Applies To: Windows Server 2003, Windows Server 2003 with SP1
The provider file is a simple text file that resides on the local computer and tells ETW which providers should report trace data. This file also tells ETW how verbose the trace reporting should be; that is, how much data the providers should report, as well as what flags or areas to trace for each provider.
The contents of a provider file contain the following:
The names of the providers that will report trace data to ETW
Provider flags (for applicable providers) that define which areas of the provider to trace
A number that tells ETW how much trace data to collect for the specified provider, called verbosity level
Note
Providers, flags, and verbosity levels are described later in this section.
In the following example, the first provider is WWW Server. The flag 0xFFFFFFFE denotes that all subcomponents of the WWW Server component should be traced, including authentication, security, compression, etc. The number five (5) denotes that the provider should report all tracing events for that provider, the most detailed trace information possible. For the other two providers, ASP and ISAPI extensions, the provider name is followed by zero and then five. The zero tells ETW not to trace any flags for the stated providers. The number five denotes the verbosity level for the providers.
"IIS: WWW Server" 0xFFFFFFFE 5
"IIS: Active Server Pages (ASP)" 0 5
"IIS: WWW Isapi Extension" 0 5