Configuring permissions for the management database
If you are the Master Auditor or have Change Permission rights, you can modify the rights granted to Active Directory users or groups. When you enable rights for designated users and groups, you make them “trustees” with permission to perform specific operations.
- Open Audit Manager.
- Select the installation name, right-click, then select Management Database.
- Click Properties.
- Click the Security tab.
- Click Add to add Active Directory users or groups to the list of trustees who granted any type of rights on this management database.
- Select a user or group listed, then select the appropriate rights for that trustee, then click OK.
The following table lists the rights available.
Select this permission To grant these rights to a trustee
- All operations on the management database.
- Modify permissions on the management database.
- Modify display name for this management database.
- Add a subnet or Active Directory site to the management database.
- Remove a subnet or Active Directory site from the management database.
Manage SQL Logins
- Set the allowed incoming accounts for the management database. Database owner is by definition an allowed user.
- Set the outgoing account for the management database.
- Remove this audit management database from the installation.
Manage Database Trace
- Enable or disable database trace.
- Export database trace.