From f94f34aea8f61d20b8194219e60ab22f1eab1f4f Mon Sep 17 00:00:00 2001
From: Marcus <49599477+h3xmarcux@users.noreply.github.com>
Date: Fri, 24 May 2019 17:57:47 +0100
Subject: [PATCH] update advanced-security-auditing-faq.md

Swapped Success and Failures
---
 .../auditing/advanced-security-auditing-faq.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/auditing/advanced-security-auditing-faq.md b/windows/security/threat-protection/auditing/advanced-security-auditing-faq.md
index 3d4c6fe39a..e2a45c1988 100644
--- a/windows/security/threat-protection/auditing/advanced-security-auditing-faq.md
+++ b/windows/security/threat-protection/auditing/advanced-security-auditing-faq.md
@@ -83,7 +83,7 @@ The rules that govern how Group Policy settings are applied propagate to the sub
 | - | - | - | -|
 | Detailed File Share Auditing | Success | Failure | Success |
 | Process Creation Auditing | Disabled | Success | Disabled |
-| Logon Auditing | Success | Failure | Success |
+| Logon Auditing | Failure | Success | Failure |
 
 ## <a href="" id="bkmk-14"></a>What is the difference between an object DACL and an object SACL?