Policy

Configure log access

Microsoft Windows

Back to ApplicationBack to main
Configure log access
Jump to overview

Policy overview

Key metadata and intent for this policy.

Computer
Category
Windows Components > Event Log Service > Application
Supported on
At least Windows Vista

Supported OS tags: Windows10, Windows10RT, Windows11, Windows7, Windows8, Windows81, WindowsRT, WindowsRT81, WindowsServer2008, WindowsServer2012, WindowsServer2012R2, WindowsServer2016, WindowsVista

This policy setting specifies the security descriptor to use for the log using the Security Descriptor Definition Language (SDDL) string. If you enable this policy setting, only those users matching the security descriptor can access the log. If you disable or do not configure this policy setting, all authenticated users and system services can write, read, or clear this log. Note: If you enable this policy setting, some tools and APIs may ignore it. The same change should be made to the "Configure log access (legacy)" policy setting to enforce this change across all tools and APIs.

Internal name
Channel_Log_FileLogAccess_1
Policy ID
367fb0dd4493
Elements
1

Registry values

How enabled and disabled states update the registry.

No explicit registry values are set for enabled or disabled states.

Policy elements

Inputs and configuration options exposed by this policy.

ScopeElementTypeRegistry mappingConstraints & behaviorCopy
Computer
Log Access
ID Channel_Log_FileLogAccess
text
Path
Software\Policies\Microsoft\Windows\EventLog\Application
Value name
ChannelAccess
Type
REG_SZ
None
Log Access
Computer · Type text
Registry mapping
Path
Software\Policies\Microsoft\Windows\EventLog\Application
Value name
ChannelAccess
Type
REG_SZ
DetailsNone