hello every body, i am using CentOS 7. The process_event not working

osqueryi --nodisable_audit --nodisable_events --audit_allow_config=true --audit_persist=true --audit_allow_sockets --logger_plugin=filesystem --events_expiry=1

Can you try passing the --audit_allow_process_events=true flag?