InvalidSecurityDescriptorLoggingLevel
Sets the verbosity of event log entries about invalid security descriptors for component launch and access permissions.
Registry Entry
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole
InvalidSecurityDescriptorLoggingLevel = value
Remarks
This is a REG_DWORD value.
| Value | Description |
|---|---|
| 1 | Always log failures when COM finds an invalid security descriptor. This is the default value. |
| 2 | Never log failures when COM finds an invalid security descriptor. It is not recommended that you disable event logging, as it can make it more difficult to diagnose problems. |
If you set launch and access permission security descriptors (commonly called ACLs) directly, it is possible to construct a security descriptor whose meaning cannot be interpreted unambiguously. COM makes an event log entry when it encounters such an invalid security descriptor.
Note that ActivationFailureLoggingLevel and CallFailureLoggingLevel have no control over logging invalid security descriptor errors. Use InvalidSecurityDescriptorLoggingLevel for full control over this functionality.
Related topics
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for