1.1.4.28 Set 'Manage auditing and security log' to 'Administrators'

Information

This policy setting determines which users can change the auditing options for files and directories and clear
the Security log.

Solution

Make sure 'Manage auditing and security log' is set to Administrators.

See Also

https://workbench.cisecurity.org/files/17

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-6(7)(b), CSCv6|5.1

Plugin: Windows

Control ID: 7c500ba5ed9cf73784eea5ce7c08073e7d215b4434937dbe55469112944c1c94