Solved

How Can I Grant a Domain User permission to WRITE to the event logs

Posted on 2007-12-05
5
1,568 Views
Last Modified: 2012-06-27
How do I allow a regular Domain account to write to the event logs on a Windows 2003 server.
We do not have the option to ADD the account to the Local Administrators group.
I understand that there are some registry changes that need to be implemented, but I would appreciate detailed instructions to accomplish this task.

Thanks

JEEGO
0
Comment
Question by:JEEGO
  • 3
  • 2
5 Comments
 
LVL 29

Expert Comment

by:mass2612
ID: 20416156
Hi,

Read, write access to the event logs can be controlled via the group policies, try this: -

How to set event log security locally or by using Group Policy in Windows Server 2003
http://support.microsoft.com/kb/323076
0
 
LVL 1

Author Comment

by:JEEGO
ID: 20419356
Thanks for the link.  I have perused the content therein, but still have additional question(s)
How do I refer to the domain user account when editing the SDDL string?
0
 
LVL 29

Accepted Solution

by:
mass2612 earned 500 total points
ID: 20423288
Hi,

You can't really manage to use a domain account specifically as far as I know. You need to refer to the built in SID strings.

Here is a list of the SID strings: -
http://msdn2.microsoft.com/en-us/library/aa379602.aspx

For example to provide read access to the Application log for all Authenticated users you would use the ACE: -
(A;;0x1;;;AU)

When A = Application, 0x1 = Read and AU=Authenticated Users

The blog tries to explain this further and does a pretty good job of it - http://flimflan.com/blog/PermissionsOnTheWindows2003ServerEventLog.aspx
0
 
LVL 1

Author Comment

by:JEEGO
ID: 20542100
For this particular problem, I needed to assign the permissions to a particular user.
The direction provided by mass2612 helped resolve the issue, thus I will assign the points
I found a script on a site that was able to provide me with the SID assoc. with a particular domain user.
0
 
LVL 29

Expert Comment

by:mass2612
ID: 20546081
Thanks for the points can you please drop a link in here to where you found the script?
0

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

I don't know if many of you have made the great mistake of using the Cisco Thin Client model with the management software VXC. If you have then you are probably more then familiar with the incredibly clunky interface, the numerous work arounds, and …
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now