DCE Permissions Supported by the DCE Audit Service
The DCE Audit Service supports the following DCE permissions that can be used to define the ACL of the audit daemon:
r
Read permission. Allows a principal to read the filters.
w
Write permission. Allows a principal to modify the filters.
c
Control permission. Allows a principal to control the audit daemon. This includes the ability to enable or disable the logging service, and to modify the ACL of the audit
daemon.
l
Log permission. Allows a principal to write audit records in the audit trail file.