How to enable diagnostic logging for Windows Security Center

Applies to: Windows 10, version 1809Windows 10, version 1607Windows 10 Enterprise 2015 LTSB


This article describes how to enable diagnostic logging for Windows Security Center in Windows 10.

More Information

Follow the steps in this section carefully. Serious problems might occur if you modify the registry incorrectly. Before you modify it, back up the registry for restoration in case problems occur.

To enable diagnostic logging for Windows Security Center, save the following content as a *.reg file, and then import the key:
Windows Registry Editor Version 5.00

For information about how to import registry data, see Import some or all of the registry.

The resulting log files are designed to be consumed by internal Microsoft teams, and they cannot be converted for use by using public tools. 

After you create these keys, you have to restart the computer, and then data capture will start immediately. The data capture will occur across reboots and operating system upgrades.

To stop logging, change the Enabled value under the following key: