Policy

Configure log access (legacy)

Microsoft Windows

Back to SecurityBack to main
Configure log access (legacy)
Jump to overview

Policy overview

Key metadata and intent for this policy.

Computer
Category
Windows Components > Event Log Service > Security
Supported on
At least Windows Vista

Supported OS tags: Windows10, Windows10RT, Windows11, Windows7, Windows8, Windows81, WindowsRT, WindowsRT81, WindowsServer2008, WindowsServer2012, WindowsServer2012R2, WindowsServer2016, WindowsVista

This policy setting specifies the security descriptor to use for the log using the Security Descriptor Definition Language (SDDL) string. You cannot configure write permissions for this log. If you enable this policy setting, only those users whose security descriptor matches the configured specified value can access the log. If you disable this policy setting, only system software and administrators can read or clear this log. If you do not configure this policy setting, the previous policy setting configuration remains in effect.

Internal name
Channel_Log_FileLogAccess_6
Policy ID
0c7740644c1c
Elements
1

Registry values

How enabled and disabled states update the registry.

No explicit registry values are set for enabled or disabled states.

Policy elements

Inputs and configuration options exposed by this policy.

ScopeElementTypeRegistry mappingConstraints & behaviorCopy
Computer
Log Access
ID Channel_Log_FileLogAccess
text
Path
System\CurrentControlSet\Services\EventLog\Security
Value name
CustomSD
Type
REG_SZ
None
Log Access
Computer · Type text
Registry mapping
Path
System\CurrentControlSet\Services\EventLog\Security
Value name
CustomSD
Type
REG_SZ
DetailsNone