Manage auditing and security log
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2
Manage auditing and security log
Description
This security setting determines which users can specify object access auditing options for individual resources, such as files, Active Directory objects, and registry keys.
This security setting does not allow a user to enable file and object access auditing in general. For such auditing to be enabled, the Audit object access setting in Computer Configuration\Windows Settings\Security Settings\Local Policies\Audit Policies must be configured.
You can view audited events in the security log of the Event Viewer. A user with this privilege can also view and clear the security log.
Default: Administrators.
Configuring this security setting
You can configure this security setting by opening the appropriate policy and expanding the console tree as such: Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment\
For specific instructions about how to configure security policy settings, see Edit security settings on a Group Policy object.
For more information, see: