DC permissions for event log
Posted on 2009-05-01
Im having a hard time finding out how to let a normal user (non domain admin) to view the event logs on domain controllers.
I know there is a security and audit log in the secpol.msc local security policy but didn't do much testing. I know that will also allow install of patches aassuming they have local logon rights.
What security group or local security policy would allow for non domain admins to view event logs on Domain Controllers?