By default, OpenEdge applies a grant authorization model to all audit-related database tables. This means that in order for an individual to be able to create audit policies and manage audit data, the individual must be granted the appropriate privileges to do so.

Because you might not want only one individual to have responsibility for all audit-related activities, you can assign to certain users one or more auditing privileges. When you assign privileges to a user, you also decide whether that user can then grant the same privileges to other users. Only users who have been granted the appropriate privileges can perform the corresponding auditing functions.

There are four audit security privileges, one of which is known as the audit administrator. The audit administrator is an authenticated user who has been granted privileges to create, update, and delete audit policies. The audit administrator also has unrestricted read access to all the audit tables and is the only user authorized to configure audit policy.

For more information about audit security privileges, see OpenEdge Getting Started: Core Business Services - Security and Auditing.