Key Takeaways
- The policy decides if extra diagnostic logs can be collected.
- Logs are only collected if optional diagnostic data is turned on.
- Turning the policy on stops extra logs from being collected.
- Turning it off or leaving it unset may allow extra logs to be collected.
Hey, let’s discuss about How to Controlling Diagnostic Log Collection on Your Devices using Intune. This policy setting determines whether extra diagnostic logs can be gathered when more detailed information is needed to fix a problem on a device. These additional logs are only sent if the device is already set up to share optional diagnostic data.
How to Control Diagnostic Log Collection on Your Devices using Intune
If you turn this policy on, no extra diagnostic logs will be collected. If you turn it off or leave it unconfigured, additional logs may sometimes be collected provided the device is configured to send optional diagnostic data.
- How to Enable or Disable Device Delete Setting for Diagnostic Data in Windows using Intune Policy
- Enable or Disable Message Sync using Intune Settings Catalog Policy
- How to Enable Add Provisioning Package using Intune Settings Catalog Policy
How to Create a Policy
To start deploying a policy in Intune, sign in to the Microsoft Intune Admin Center. Then go to Devices> Configuration under the Manage devices> Policies> Create> New policy. In the create a profile window, add the platform Windows and later, profile type is Settings Catalog. Then click the create button.
Basic Step of Policy Creation
To begin configuring a policy in Intune, start with the Basics step. Here, we can add the name(Limit Diagnostic Log Collection) of the policy, give a brief description(not mandatory) and platform is Windows. Click Next to continue.
Configure Diagnostic Log Collection Policy
In the Configuration settings tag, you can see the Add settings option. When you click on the Add Settings option, a Settings Picker window will appear. There, select System as category and then select Limit Diagnostic Log Collection.
When you close the Settings Picker, you will see it in the Configuration Settings, here you can set the limit diagnostic log collection Policy to Enable or Disable. By default, it will be Disabled. Should you wish to proceed with this particular setting, click Next.
Enable Diagnostic Log Collection Policy
We can Enable or configure this policy by toggle switch next to the Limit Diagnostic Log Collection setting. To Enable the policy, you have to move the toggle from left to right. Click Next to continue.
What is Scope Tag
A scope tag is used to assign policies to specific groups within an organisation. The scope tag is not mandatory, so you can skip this section. Click Next if they’re not required for your setup.
Assignments Tab
Here, you will see an option called Add Groups under the Include Groups section. Click on it. When you click, a list of available groups will appear. You can search for the group you want (HTMD – Test Policy). Then click the Next button.
Final Step of Policy Creation
In this section, you can see a summary of everything you entered in the previous steps, such as basic details, configuration settings, assignment details, and more. If you want to change or edit anything, you can easily go back to the previous section. Click Create to finish, and a message will confirm that the “Limit Diagnostic Log Collection created successfully”.
Device and User Check-in Status
To view a policy’s status, go to Devices > Configuration in the Intune portal, select the policy(Limit Diagnostic Log Collection) and check that the status shows Succeeded (1). Use manual sync in the Company Portal to speed up the process.
Client Side Verification
To confirm whether the policy is successful or not, you can use the Event Viewer. First, open Event Viewer and navigate to Applications and Services Logs > Microsoft > Windows > Device Management > Enterprise Diagnostic Provider > Admin. Use Filter Current Log and search the Event ID 813.
MDM PolicyManager: Set policy int, Policy: (LimitDiagnosticLogCollection), Area: (System),
EnrollmentID requestinq merqe: (EB427D85-802F-46D9-A3E2-D5B414587F63), Current User:
(Device), Int: (0x1), Enrollment Type: (0x6), Scope: (0x0).
How to Remove Assigned Group from Diagnostic Log Collection Policy
After creating the policy, if you want to remove the specific group that you previously selected, you can easily do that. First, go to Devices > Configuration policies. In the Configuration policy section, search and select the policy. In the Assignment section, you will find an Edit option and click on it. Then, click the Remove option.
For detailed information, you can refer to our previous post – Learn How to Delete or Remove App Assignment from Intune using by Step-by-Step Guide.
How to Delete Diagnostic Log Collection Policy from Intune
If you want to delete this policy for any reason, you can easily do so. First, search for the policy name in the configuration section. When you find the policy name, you will see a 3-dot menu next to it. Click on the 3 dots, then click the Delete button.
For detailed information, you can refer to our previous post – How to Delete Allow Clipboard History Policy in Intune Step by Step Guide.
Windows Configuration Service Provider (CSP)
The Policy Configuration Service Provider (CSP) is a feature used by organisations to manage and control settings on Windows 10 and 11 devices. It explains what each policy does, what settings or values can be used, and how it connects to older Group Policy settings (Group Policy Mapping details).
In Intune, we can only choose from the Allowed Values when configuring a setting. The allowed values of the Limit Diagnostic Log Collection policy are given below.
| Value | Description |
|---|---|
| 0(Default) | Disable |
| 1 | Enable |
Description framework properties
- Format – Int
- Access type – Add, Delete, Get, Replace
- Default value – 0
Group Policy Mapping
| Name | Value |
|---|---|
| Name | LimitDiagnosticLogCollection |
| Friendly Name | Limit Diagnostic Log Collection |
| Location | Computer Configuration |
| Path | WindowsComponents > Data Collection and Preview Builds |
| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
| ADMX File Name | DataCollection.admx |
Need Further Assistance or Have Technical Questions?
Join the LinkedIn Page and Telegram group to get the latest step-by-step guides and news updates. Join our Meetup Page to participate in User group meetings. Also, Join the WhatsApp Community and WhatsApp Channel to get the latest news on Microsoft Technologies. We are there on Reddit as well.
Author
Anoop C Nair has been Microsoft MVP from 2015 onwards for 10 consecutive years! He is a Workplace Solution Architect with more than 22+ years of experience in Workplace technologies. He is also a Blogger, Speaker, and Local User Group Community leader. His primary focus is on Device Management technologies like SCCM and Intune. He writes about technologies like Intune, SCCM, Windows, Cloud PC, Windows, Entra, Microsoft Security, Career, etc