This policy setting controls Event Log behavior when the log file reaches its maximum size and takes effect only if the "Retain old events" policy setting is enabled. If you enable this policy setting and the "Retain old events" policy setting is enabled, the Event Log file is automatically closed and renamed when it is full. A new file is then started. If you disable this policy setting and the "Retain old events" policy setting is enabled, new events are discarded and old events are retained. If you do not configure this policy setting and the "Retain old events" policy setting is enabled, new events are discarded and the old events are retained. Fix: (1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsEvent Log ServiceApplicationBack up log automatically when full (2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsEventLogApplication!AutoBackupLogFiles

[enabled/disabled]

(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Event Log Service\Application\Back up log automatically when full (2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\EventLog\Application!AutoBackupLogFiles