Process Monitor Error – Capture requires Administrators group membership

Chandler Yew 11 Reputation points
2021-06-13T21:24:53.133+00:00

Hi,

Just would like to find out what will be the best way to allow ProcMon to run correctly without giving the Load an unload device drivers privilege via GPO?

It was found out last week that user with machine administrator right are getting error attached 105148-procmonerror.jpgwhen running proc mon (the same error even trying to run procmon as administrator)

Any help or suggestion is appreciated.

Thanks.

Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,169 questions
0 comments No comments
{count} vote

1 answer

Sort by: Most helpful
  1. Buğra Çelik 0 Reputation points
    2023-05-19T14:45:39.6533333+00:00

    User's image

    Any help or suggestion is appreciated.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.