From 05dc54a00b4993de5a0cc5e9129519a8348c9873 Mon Sep 17 00:00:00 2001 From: jsuther1974 Date: Thu, 30 Mar 2023 16:19:26 -0700 Subject: [PATCH] Update event-id-explanations.md --- .../event-id-explanations.md | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/windows/security/threat-protection/windows-defender-application-control/event-id-explanations.md b/windows/security/threat-protection/windows-defender-application-control/event-id-explanations.md index ea059768e5..5151709c18 100644 --- a/windows/security/threat-protection/windows-defender-application-control/event-id-explanations.md +++ b/windows/security/threat-protection/windows-defender-application-control/event-id-explanations.md @@ -86,7 +86,7 @@ These events are found in the **CodeIntegrity - Operational** event log. The following events provide helpful diagnostic information when a WDAC policy includes the ISG or MI option. These events can help you debug why something was allowed/denied based on managed installer or ISG. Events 3090, 3091, and 3092 don't necessarily indicate a problem but should be reviewed in context with other events like 3076 or 3077. -These events are found in the **CodeIntegrity - Operational** event log, unless otherwise noted. +Unless otherwise noted, these events are found in either the **CodeIntegrity - Operational** event log or the **CodeIntegrity - Verbose** event log depending on your version of Windows. | Event ID | Explanation | |--------|---------| @@ -101,8 +101,6 @@ Events 3090, 3091, and 3092 are reported per active policy on the system, so you The following information is found in the details for 3090, 3091, and 3092 events. -These events are found in either the **CodeIntegrity - Operational** event log or the **CodeIntegrity - Verbose** event log, depending on your version of Windows. - | Name | Explanation | |------|------| | ManagedInstallerEnabled | Indicates whether the specified policy enables managed installer trust |