Configure log access (legacy)

This policy setting specifies the security descriptor to use for the log using the Security Descriptor Definition Language (SDDL) string. You cannot configure write permissions for this log.

If you enable this policy setting, only those users whose security descriptor matches the configured specified value can access the log.

If you disable this policy setting, only system software and administrators can read or clear this log.

If you do not configure this policy setting, the previous policy setting configuration remains in effect.

Supported on: At least Windows Vista

Log Access

Registry HiveHKEY_LOCAL_MACHINE
Registry PathSystem\CurrentControlSet\Services\EventLog\Security
Value NameCustomSD
Value TypeREG_SZ
Default Value

eventlog.admx

Administrative Templates (Computers)

Administrative Templates (Users)