Solved

What rights should I grand a regular user to read DC System Logs

Posted on 2015-01-12
3
97 Views
Last Modified: 2015-01-17
Hello,
I have a regular user which i'm looking to give permissions to have the SIEM read the AD logs (2008 R2).
I don't want to make that user a Domain Admin so i need to know what (if any) permissions (and how) i need to assign to have him read the security log (as of right now simple read permissions as everyone else fail)
0
Comment
Question by:johnnyjonathan
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 4

Expert Comment

by:Manoj Bojewar
ID: 40544961
Normal user access will not work to login DC. you need to forward DC logs to other server and that server, you can allow user to access DC logs.

http://technet.microsoft.com/en-us/library/cc748890.aspx
0
 
LVL 55

Accepted Solution

by:
McKnife earned 500 total points
ID: 40544969
I guess you just need to populate the built-in group "eventlog readers"
0
 

Author Closing Comment

by:johnnyjonathan
ID: 40555074
Simple and perfect! thanks!
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A hard and fast method for reducing Active Directory Administrators members.
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question