From a1ea541d933132e1867f80f777297c89107ef3a8 Mon Sep 17 00:00:00 2001 From: Diana Salyamova Date: Wed, 17 Jun 2026 12:47:02 +0100 Subject: [PATCH] =?UTF-8?q?remove=20unnesecery=C2=A0permissions?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../auditor/10.8/configuration/windowsserver/permissions.md | 6 +----- .../auditor/10.9/configuration/windowsserver/permissions.md | 6 +----- 2 files changed, 2 insertions(+), 10 deletions(-) diff --git a/docs/auditor/10.8/configuration/windowsserver/permissions.md b/docs/auditor/10.8/configuration/windowsserver/permissions.md index 27b0e441df..eccac05e99 100644 --- a/docs/auditor/10.8/configuration/windowsserver/permissions.md +++ b/docs/auditor/10.8/configuration/windowsserver/permissions.md @@ -46,9 +46,6 @@ Set\Services\EventLog\Security_. **Step 5 –** Check **Allow** next to the **Read** permission. -**NOTE:** For auditing Logon Activity, you also need to assign the Read permission to the -_HKEY_LOCAL_MACHINE\SECURITY\Policy\PolAdtEv_ registry key. - ### Assign Permission using the Group Policy Management Console Follow the steps to assign permission using the Group Policy Management console; @@ -66,7 +63,7 @@ the left and navigate to Policies > Windows Settings > Security Settings > Regis **Step 4 –** Right-click in the pane and select Add Key. -**Step 5 –** Navigate to `HKEY_LOCAL_MACHINE\SECURITY\Policy\PolAdtEv` and click OK. +**Step 5 –** Navigate to `HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg` and click OK. **Step 6 –** Click Add and enter the name of the user that you want to grant permissions to and press Enter. @@ -77,7 +74,6 @@ In the pop-up window, select Propagate inheritable permissions to all subkeys an Repeat the steps 4-7 for keys below: -- `HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg`; - `HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Security`. **Step 8 –** Close Group Policy Management console. diff --git a/docs/auditor/10.9/configuration/windowsserver/permissions.md b/docs/auditor/10.9/configuration/windowsserver/permissions.md index a5a1c06879..2acfddbce6 100644 --- a/docs/auditor/10.9/configuration/windowsserver/permissions.md +++ b/docs/auditor/10.9/configuration/windowsserver/permissions.md @@ -46,9 +46,6 @@ Set\Services\EventLog\Security_. **Step 5 –** Check **Allow** next to the **Read** permission. -**NOTE:** For auditing Logon Activity, you also need to assign the Read permission to the -_HKEY_LOCAL_MACHINE\SECURITY\Policy\PolAdtEv_ registry key. - ### Assign Permission using the Group Policy Management Console Follow the steps to assign permission using the Group Policy Management console; @@ -66,7 +63,7 @@ the left and navigate to Policies > Windows Settings > Security Settings > Regis **Step 4 –** Right-click in the pane and select Add Key. -**Step 5 –** Navigate to `HKEY_LOCAL_MACHINE\SECURITY\Policy\PolAdtEv` and click OK. +**Step 5 –** Navigate to `HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg` and click OK. **Step 6 –** Click Add and enter the name of the user that you want to grant permissions to and press Enter. @@ -77,7 +74,6 @@ In the pop-up window, select Propagate inheritable permissions to all subkeys an Repeat the steps 4-7 for keys below: -- `HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg`; - `HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Security`. **Step 8 –** Close Group Policy Management console.