From 88f3ebdd6d3dfb617d598a80d26f8e2861bf3832 Mon Sep 17 00:00:00 2001
From: Tamara Buch <git@tamarabee.com>
Date: Wed, 17 Apr 2024 12:14:15 -0500
Subject: [PATCH] Fix/283 (#284)

* remove bad keys from win11 schema

* Changelog++

* changelog++

* Update CHANGELOG.md

Co-authored-by: Edward Delaporte <delaport@illinois.edu>

---------

Co-authored-by: Edward Delaporte <delaport@illinois.edu>
---
 CHANGELOG.md                                         |  4 ++++
 ...ft_Windows_11_Enterprise_Release_23H2.schema.psm1 | 12 ------------
 2 files changed, 4 insertions(+), 12 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index c445dad..ac238da 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -7,6 +7,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## Unreleased
 
+### Removed
+
+- Removed 'Ensure Turn on PowerShell Transcription is set to Enabled (2)' and (3). These are subkeys of 'HKLM:\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' (OutputDirectory and EnableInvocationHeader) which are not mentioned by the CIS Benchmark and erroneously included in the GPOKit. Invalid ValueData for the OutputDirectory key was also causing issues with the MOF file in some cases, depending on how it was generated.
+
 ## [4.0.0] - 2024-03-26
 
 ### Added
diff --git a/src/CISDSC/dscresources/CIS_Microsoft_Windows_11_Enterprise_Release_23H2/CIS_Microsoft_Windows_11_Enterprise_Release_23H2.schema.psm1 b/src/CISDSC/dscresources/CIS_Microsoft_Windows_11_Enterprise_Release_23H2/CIS_Microsoft_Windows_11_Enterprise_Release_23H2.schema.psm1
index 5157f65..38599fb 100644
--- a/src/CISDSC/dscresources/CIS_Microsoft_Windows_11_Enterprise_Release_23H2/CIS_Microsoft_Windows_11_Enterprise_Release_23H2.schema.psm1
+++ b/src/CISDSC/dscresources/CIS_Microsoft_Windows_11_Enterprise_Release_23H2/CIS_Microsoft_Windows_11_Enterprise_Release_23H2.schema.psm1
@@ -4711,18 +4711,6 @@ Configuration CIS_Microsoft_Windows_11_Enterprise_Release_23H2
             ValueName = 'EnableTranscripting'
             ValueType = 'Dword'
         }
-        Registry "18.10.87.2 - (L1) Ensure Turn on PowerShell Transcription is set to Enabled (2)" {
-            Ensure = 'Present'
-            Key = 'HKLM:\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription'
-            ValueData = ' '
-            ValueName = 'OutputDirectory'
-            ValueType = 'String'
-        }
-        Registry "18.10.87.2 - (L1) Ensure Turn on PowerShell Transcription is set to Enabled (3)" {
-            Ensure = 'Absent'
-            Key = 'HKLM:\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription'
-            ValueName = 'EnableInvocationHeader'
-        }
     }
     if($ExcludeList -notcontains '18.10.89.1.1' -and $LevelOne){
         Registry "18.10.89.1.1 - (L1) Ensure Allow Basic authentication is set to Disabled" {