diff --git a/tools/config/generic/powershell.yml b/tools/config/generic/powershell.yml
index 23bc322e0..6f8f3828e 100644
--- a/tools/config/generic/powershell.yml
+++ b/tools/config/generic/powershell.yml
@@ -17,24 +17,24 @@ logsources:
         rewrite:
             product: windows
             service: powershell
-   # for the "classic" channel   
-   ps_classic_start:
+    # for the "classic" channel   
+    ps_classic_start:
         category: ps_classic_start
         product: windows
         conditions:
             EventID: 400
         rewrite:
             product: windows
-            service: powershell-classic   
-   ps_classic_provider_start:
+            service: powershell-classic
+    ps_classic_provider_start:
         category: ps_classic_provider_start
         product: windows
         conditions:
             EventID: 600
         rewrite:
             product: windows
-            service: powershell-classic   
-   ps_classic_script:
+            service: powershell-classic
+    ps_classic_script:
         category: ps_classic_script
         product: windows
         conditions: