JEEGO
asked on
How Can I Grant a Domain User permission to WRITE to the event logs
How do I allow a regular Domain account to write to the event logs on a Windows 2003 server.
We do not have the option to ADD the account to the Local Administrators group.
I understand that there are some registry changes that need to be implemented, but I would appreciate detailed instructions to accomplish this task.
Thanks
JEEGO
We do not have the option to ADD the account to the Local Administrators group.
I understand that there are some registry changes that need to be implemented, but I would appreciate detailed instructions to accomplish this task.
Thanks
JEEGO
ASKER
Thanks for the link. I have perused the content therein, but still have additional question(s)
How do I refer to the domain user account when editing the SDDL string?
How do I refer to the domain user account when editing the SDDL string?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
For this particular problem, I needed to assign the permissions to a particular user.
The direction provided by mass2612 helped resolve the issue, thus I will assign the points
I found a script on a site that was able to provide me with the SID assoc. with a particular domain user.
The direction provided by mass2612 helped resolve the issue, thus I will assign the points
I found a script on a site that was able to provide me with the SID assoc. with a particular domain user.
Thanks for the points can you please drop a link in here to where you found the script?
Read, write access to the event logs can be controlled via the group policies, try this: -
How to set event log security locally or by using Group Policy in Windows Server 2003
http://support.microsoft.com/kb/323076