Support
 
Phone Get Quote
 
Support
 
US: +1 888 720 9500
US: +1 888 791 1189
Intl: +1 925 924 9500
Aus: +1 800 631 268
UK: 0800 028 6590
CN: +86 400 660 8680

Direct Inward Dialing: +1 408 916 9892

 

Privileges/permissions required for event log collection

1. Grant the user the Manage auditing and security log right

The Manage auditing and security log right allows the user to define object level auditing.

  • Log in to your Domain Controller with Domain Admin privileges→ Open the Group Policy Management Console → Right click on the "ADAudit Plus Permission GPO" → Edit.
  • In the Group Policy Management Editor → Computer Configuration → Policies → Windows Settings → Security Settings → Local Policies → User Rights Assignment.
  • Navigate to the right panel, right click on Manage auditing and security log → Properties →Add the "ADAudit Plus" user.
active-directory-audit-privileges-permissions-required-for-event-log-collection
2. Make the user a member of the Event Log Readers group

Members of the event log readers group will be able to read the event logs of all the audited computers.

  • For Domain Controllers :
  • Log in to your Domain Controller with Domain Admin privileges → Open Active Directory Users and Computers → Builtin Container → Navigate to the right panel, right click on Event Log Readers → Properties → Members →Add the "ADAudit Plus" user.

    active-directory-audit-event-log-readers-group
  • For other computers (Windows servers and workstations):
  • a.Log in to your Domain Controller with Domain Admin privileges→ Open the Group Policy Management Console → Right click on the "ADAudit Plus Permission GPO" → Edit.

    b. In the Group Policy Management Editor → Computer Configuration →Preferences → Control Panel Settings → Right click on Local Users and Groups → New → Local Group → Select Event Log Readers group under group name → Add the "ADAudit Plus" user.

    active-directory-audit-local-usersgroup

ADAudit Plus Trusted By

A single pane of glass for complete Active Directory Auditing and Reporting