grenade/grant-eventlogaccess.ps1

## grant-eventlogaccess.ps1
param (
  [string] $username = "$env:USERDOMAIN\$env:USERNAME"
)

function GrantAccess ($principle, $log, $access) {
  $path = ('HKLM:\SYSTEM\CurrentControlSet\services\eventlog\{0}' -f $log)
  if (Test-Path $path) {
    Write-Host ('Granting {0} on {1} to {2}' -f $access, $path, $principle) -ForegroundColor Yellow
    Get-Acl $path | Format-List
    $acl = Get-Acl $path
    $rule = New-Object System.Security.AccessControl.RegistryAccessRule($principle, @($access), 'Allow')
    $acl.AddAccessRule($rule)
    Set-Acl $path $acl
    Write-Host ('Granted {0} on {1} to {2}' -f $access, $path, $principle) -ForegroundColor DarkGreen
    Get-Acl $path | Format-List
  } else {
    Write-Error "Cannot acesss $path"
  }
}

GrantAccess $username 'Application' 'ReadKey, WriteKey'
GrantAccess $username 'Security' 'ReadKey'
	param (
	[string] $username = "$env:USERDOMAIN\$env:USERNAME"
	)

	function GrantAccess ($principle, $log, $access) {
	$path = ('HKLM:\SYSTEM\CurrentControlSet\services\eventlog\{0}' -f $log)
	if (Test-Path $path) {
	Write-Host ('Granting {0} on {1} to {2}' -f $access, $path, $principle) -ForegroundColor Yellow
	Get-Acl $path \| Format-List
	$acl = Get-Acl $path
	$rule = New-Object System.Security.AccessControl.RegistryAccessRule($principle, @($access), 'Allow')
	$acl.AddAccessRule($rule)
	Set-Acl $path $acl
	Write-Host ('Granted {0} on {1} to {2}' -f $access, $path, $principle) -ForegroundColor DarkGreen
	Get-Acl $path \| Format-List
	} else {
	Write-Error "Cannot acesss $path"
	}
	}

	GrantAccess $username 'Application' 'ReadKey, WriteKey'
	GrantAccess $username 'Security' 'ReadKey'