Category: At least Windows Vista

This policy setting controls Event Log behavior when the log file reaches its maximum size and takes effect only if the “Retain old events” policy setting is enabled. If you enable this policy setting and the “Retain old events” policy setting is enabled the Event Log file is automatically closed and renamed when it is full. A new file is then started. If you disable this policy setting and the “Retain old events” policy setting is enabled new events are discarded and old events are retained. If you do not configure this policy setting and the “Retain old events” policy setting is enabled new events are discarded and the old events are retained.

This policy setting specifies the maximum size of the log file in kilobytes. If you enable this policy setting you can configure the maximum log file size to be between 1 megabyte (1024 kilobytes) and 2 terabytes (2147483647 kilobytes) in kilobyte increments. If you disable or do not configure this policy setting the maximum size of the log file will be set to the locally configured value. This value can be changed by the local administrator using the Log Properties dialog and it defaults to 20 megabytes.

This policy setting controls the location of the log file. The location of the file must be writable by the Event Log service and should only be accessible to administrators. If you enable this policy setting the Event Log uses the path specified in this policy setting. If you disable or do not configure this policy setting the Event Log uses the system32 or system64 subdirectory.

This policy setting controls Event Log behavior when the log file reaches its maximum size. If you enable this policy setting and a log file reaches its maximum size new events are not written to the log and are lost. If you disable or do not configure this policy setting and a log file reaches its maximum size new events overwrite old events. Note: Old events may or may not be retained according to the “Backup log automatically when full” policy setting.

This policy setting determines the default consent behavior of Windows Error Reporting. If you enable this policy setting you can set the default consent handling for error reports. The following list describes the Consent level settings that are available in the pull-down menu in this policy setting:- Always ask before sending data: Windows prompts users for consent to send reports. – Send parameters: Only the minimum data that is required to check for an existing solution is sent automatically and Windows prompts users for consent to send any additional data that is requested by Microsoft. – Send parameters and safe additional data: the minimum data that is required to check for an existing solution along with data which Windows has determined (within a high probability) does not contain personally-identifiable information is sent automatically and Windows prompts the user for consent to send any additional data that is requested by Microsoft. – Send all data: any error reporting data requested by Microsoft is sent automatically. If this policy setting is disabled or not configured then the consent level defaults to the highest-privacy setting: Always ask before sending data.

This policy setting determines the behavior of the Configure Default Consent setting in relation to custom consent settings. If you enable this policy setting the default consent levels of Windows Error Reporting always override any other consent policy setting. If you disable or do not configure this policy setting custom consent policy settings for error reporting determine the consent level for specified event types and the default consent setting determines only the consent level of any other error reports.

This policy setting determines the consent behavior of Windows Error Reporting for specific event types. If you enable this policy setting you can add specific event types to a list by clicking Show and typing event types in the Value Name column of the Show Contents dialog box. Event types are those for generic non-fatal errors: crash no response and kernel fault errors. For each specified event type you can set a consent level of 0 1 2 3 or 4. – 0 (Disable): Windows Error Reporting sends no data to Microsoft for this event type. – 1 (Always ask before sending data): Windows prompts the user for consent to send reports. – 2 (Send parameters): Windows Error Reporting automatically sends the minimum data required to check for an existing solution and Windows prompts the user for consent to send any additional data requested by Microsoft. – 3 (Send parameters and safe additional data): Windows Error Reporting automatically sends the minimum data required to check for an existing solution as well as data which Windows has determined (within a high probability) does not contain personally identifiable data and prompts the user for consent to send any additional data requested by Microsoft. – 4 (Send all data): Any data requested by Microsoft is sent automatically. If you disable or do not configure this policy setting then the default consent settings that are applied are those specified by the user in Control Panel or in the Configure Default Consent policy setting.