diff --git a/Vagrant/resources/splunk_server/props.conf b/Vagrant/resources/splunk_server/props.conf
index bc6dcab..d4bd90d 100644
--- a/Vagrant/resources/splunk_server/props.conf
+++ b/Vagrant/resources/splunk_server/props.conf
@@ -21,7 +21,7 @@ TIME_FORMAT = %s
 TRUNCATE = 0
 
 [osquery:status]
-TRANSFORMS-null = setnull
+TRANSFORMS-null = osquery_status_filter
 
 [WinEventLog]
-TRANSFORMS-null = autoruns_wineventlog_null
\ No newline at end of file
+TRANSFORMS-null = autoruns_wineventlog_null