Hello,
Looks like this group policy allows you to limit the event viewer on a per-user basis.
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi All,
We are currently using Windows Server 2022 and Windows 10/11 on laptops for running a windows application. This application logs into the 'Applications and Services Logs' under the 'Event Viewer'.
We want only users with 'Administrator' privileges to be able to view these logs in the 'Event Viewer' (Similar to Security events in the Event Viewer).
We came to the understanding that we can achieve this by modifying the 'ChannelAccess' for the specific application under 'Registry Editor' settings.
The path for the same: 'Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\CustomApp'
But we are not able to know as to what is the actual value that should be set for 'ChannelAccess' for restricting a user.
Can anyone please let us know as to how we can restrict a user access to the Event Viewer logs.
Also if our understanding is wrong or if there is any other way to achieve this, please help us on this.
Any help is appreciated!
Thank you in advance!
Hello,
Looks like this group policy allows you to limit the event viewer on a per-user basis.
Hello S Abijith,
Thank you for posting in Q&A forum.
Please try to modify Log Properties:
I hope the information above is helpful.
If you have any questions or concerns, please feel free to let us know.
Best Regards,
Daisy Zhou
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.
Hello,
Actually the setting should be disabled. When I set it to disabled I get this when trying to run the snap-in after a reboot. The wording in the description is all that clear, i read it as having to enable and tried setting it that way first, then reread it and set to disabled.
This is my setting, I did have to reboot to get it to take affect.
Darrell