sysmon-config icon indicating copy to clipboard operation
sysmon-config copied to clipboard

Published 20 hours ago verified publisher icon SwiftOnSecurity

Sysmon installation issue

Open MarkAndreson opened this issue 3 years ago • 1 comments

Hi,

Need help with installing Sysmon on Windows 10 and Windows Server 2012 R2. I am getting the following error after running the command: sysmon64.exe -i

ERROR wevtutil.exe returned failure Event manifest installation failed with last error Access denied

Kindly help

MarkAndreson avatar Sep 07 '20 05:09 MarkAndreson

Heyho! :) "Access denied" --> Did you run it as administrator? You'll need to install it as administrator both on DC and Workstation. For workstation i'd suggest to implement a GPO that installs it for you :)

pr3l14t0r avatar Oct 07 '20 12:10 pr3l14t0r